CVE-2019-1010127

CVE-2019-1010127 affects VCFTools vcftools prior to version 0.1.15, with a use-after-free in header.cpp:header::add_FILTER_descriptor. The documented impact is Denial of Service or possibly other effects (e.g., code execution or information disclosure). Exploitation requires the victim to open a ...

CVE-2018-11130

CVE-2018-11130 affects vcftools 0.1.15, where header.cpp:header::add_FORMAT_descriptor can be triggered by a crafted VCF file to cause a use-after-free, leading to denial of service and potentially other impact. Multiple connected advisories corroborate a use-after-free in vcftools header.cpp and...

CVE-2018-11099

CVE-2018-11099 and related CVEs affect vcftools up to and including version 0.1.15, with a heap-based buffer over-read in header.cpp (header::add_INFO_descriptor) that can cause information disclosure when processing crafted VCF files. Connected advisories summarize these issues across Debian, Ub...

CVE-2018-11129

CVE-2018-11129 affects vcftools 0.1.15, via header.cpp:header::add_INFO_descriptor, causing use-after-free and memory issues on crafted VCF files. Public advisories note potential denial of service (crash) and possibly other unspecified impacts; Debian reports use-after-free and heap-based buffer...