5 matches found
CVE-2019-20016
libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c. NOTE: a download of v0.9 after 2019-12-06 should fully remediate this issue...
Design/Logic Flaw
libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c. NOTE: a download of v0.9 after 2019-12-06 should fully remediate this issue...
CVE-2019-20016
CVE-2019-20016 affects libmysofa. Multiple connected sources confirm the issue arises from insufficient restriction of recursive function calls, demonstrated by stack consumption in readOHDRHeaderMessageDatatype (dataobject.c) and directblockRead (fractalhead.c). The vulnerability is addressed in...
CVE-2019-20016
libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c. NOTE: a download of v0.9 after 2019-12-06 should fully remediate this issue...
CVE-2019-16091
Symonics libmysofa 0.7 has an out-of-bounds read in directblockRead in hdf/fractalhead.c...