CVE-2018-13844

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-13844
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-13844.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-13844
Downstream
Published
2018-07-10T18:29:00.467Z
Modified
2026-04-10T04:05:25.583697Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

An issue has been found in HTSlib 1.8. It is a memory leak in fairead in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib users would be aware of the need to destruct this object returned by faiload() in their own code

References

Affected packages

Git / github.com/samtools/htslib

Affected ranges

Type
GIT
Repo
https://github.com/samtools/htslib
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
be22a2a1082f6e570718439b9ace2db17a609eae
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.8"
        }
    ]
}

Affected versions

1.*
1.0
1.1
1.2
1.2.1
1.3
1.3.1
1.3.2
1.4
1.4.1
1.5
1.6
1.7
1.8
Other
stable1
stable2
vcf-direct-final

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-13844.json"