16 matches found
Ubuntu 18.04 ESM : VCFtools vulnerabilities (USN-4835-1)
The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4835-1 advisory. It was discovered that VCFtools improperly handled certain input. If a user were tricked into opening a crafted input file, VCFtools could be made to cra...
CVE-2019-1010127
VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact eg. code execution or information disclosure. The component is: The header::addFILTERdescriptor method in header.cpp. The attack vector is: The victim must open a...
CVE-2019-1010127
VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact eg. code execution or information disclosure. The component is: The header::addFILTERdescriptor method in header.cpp. The attack vector is: The victim must open a...
Design/Logic Flaw
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
Heap overflow
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted vcf file...
CVE-2018-11129
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
Design/Logic Flaw
The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11130
The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11099
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted vcf file...
CVE-2018-11130
The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11099
CVE-2018-11099 and related CVEs affect vcftools up to and including version 0.1.15, with a heap-based buffer over-read in header.cpp (header::add_INFO_descriptor) that can cause information disclosure when processing crafted VCF files. Connected advisories summarize these issues across Debian, Ub...
CVE-2018-11130
The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11129
CVE-2018-11129 affects vcftools 0.1.15, via header.cpp:header::add_INFO_descriptor, causing use-after-free and memory issues on crafted VCF files. Public advisories note potential denial of service (crash) and possibly other unspecified impacts; Debian reports use-after-free and heap-based buffer...
CVE-2018-11129
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11129
The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...
CVE-2018-11130
The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...