OSV-2026-803 Container-overflow in OpenBabel::MDLFormat::ReadV3000Block

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=515663946 Crash type: Container-overflow READ 1 Crash state: OpenBabel::MDLFormat::ReadV3000Block OpenBabel::MDLFormat::ReadMolecule OpenBabel::OBConversion::Read...

📄 OpenBabel 3.1.1 Heap Buffer Overflow

This project is a local exploitation research and crash detection framework designed to evaluate memory-safety weaknesses in Open Babel version 3.1.1 under controlled laboratory conditions...

openbabel 代码问题漏洞

OpenBabel is an open-source chemistry toolkit software developed by Open Babel. Versions of OpenBabel 3.1.1 and earlier contained code vulnerabilities. These vulnerabilities stemmed from a null pointer dereferencing in the OBAtom::GetExplicitValence function in the isrc/atom.cpp file, which could...

📄 OpenBabel 3.1.1 Parsing Issues

This Metasploit auxiliary module generates specially crafted proof of concept files targeting potential parsing vulnerabilities in OpenBabel version 3.1.1 such as NULL pointer dereference and out-of-bounds read conditions...

openbabel 缓冲区错误漏洞

OpenBabel is an open-source chemical toolkit software developed by Open Babel. Versions of OpenBabel 3.1.1 and earlier contained a buffer error vulnerability, which stemmed from an out-of-bounds read in the function OpenBabel::transform3d::DescribeAsString located in the file...

openbabel 缓冲区错误漏洞

OpenBabel is an open-source chemical toolkit software developed by Open Babel. Versions of OpenBabel 3.1.1 and earlier contained a buffer error vulnerability, which stemmed from an out-of-bounds read in the function OBAtom::SetFormalCharge within the library file include/openbabel/atom.h...

EUVD-2025-31199

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-11000

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Open Babel up to 3.1.1. This affects the function PQSFormat::ReadMolecule of the file /src/formats/PQSformat.cpp. This...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the ReadMolecule function in the PQSFormat component. An attacker can cause a denial of service by providing crafted input that triggers a null pointer dereference during local processing. Remediation There ...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the OBSmilesParser::ParseSmiles function. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input to the affected process. Remediation There is no fixed...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the CheckSpecies function in the ChemKinFormat process. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input that triggers a heap-based buffer overflow...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the SetHilderbrandt function. An attacker can cause a denial of service by triggering a null pointer dereference through local access. Remediation There is no fixed version for openbabel/openbabel. References...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the ReadReactionQualifierLines function. An attacker can cause a denial of service by providing crafted input that triggers a null pointer dereference during local processing. Remediation There is no fixed...

CVE-2025-10997

A flaw has been found in Open Babel up to 3.1.1. Impacted is the function ChemKinFormat::CheckSpecies of the file /src/formats/chemkinformat.cpp. Executing manipulation can lead to heap-based buffer overflow. The attack can only be executed locally. The exploit has been published and may be used...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the underflow function in zipstreamimpl.h. An attacker can cause memory corruption by providing crafted input to this function. Remediation There is no fixed version for openbabel/openbabel. References...

openbabel 代码问题漏洞

openbabel is a chemistry toolkit software from Open Babel open source. A code issue vulnerability exists in openbabel 3.1.1 and earlier versions, which stems from the presence of a null pointer dereference in the function CacaoFormat::SetHilderbrandt in the file /src/formats/cacaoformat.cpp, whic...

UBUNTU-CVE-2022-37331

An out-of-bounds write vulnerability exists in the Gaussian format orientation functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...