BWA (aka Burrow-Wheeler Aligner) before 2019-01-23 has a stack-based buffer overflow in the bns_restore function in bntseq.c via a long sequence name in a .alt file.
References
Link | Resource |
---|---|
https://coreymhudson.github.io/bwa_vulnerabilties/ | Exploit Third Party Advisory |
https://github.com/lh3/bwa/pull/232 | Patch Third Party Advisory |
https://usn.ubuntu.com/4087-1/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-29T04:54:04
Updated: 2019-08-06T19:06:08
Reserved: 2019-03-29T00:00:00
Link: CVE-2019-10269
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-03-29T05:29:00.753
Modified: 2023-02-28T20:46:24.513
Link: CVE-2019-10269
JSON object: View
Redhat Information
No data.
CWE