CVE-2019-20063

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-20063
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-20063.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-20063
Downstream
Related
Published
2019-12-29T20:15:28.080Z
Modified
2026-02-05T03:40:42.716526Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

hdf/dataobject.c in libmysofa before 0.8 has an uninitialized use of memory, as demonstrated by mysofa2json.

References

Affected packages

Git / github.com/hoene/libmysofa

Affected ranges

Type
GIT
Repo
https://github.com/hoene/libmysofa
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e07edb39e9ecc796127cd748ada4a4bac88cb5d2

Affected versions

v0,.*
v0,.4
v0.*
v0.1
v0.2
v0.3
v0.4
v0.4(Windows)
v0.5
v0.6
v0.7

Database specific

vanir_signatures 
[
    {
        "target": {
            "file": "src/hdf/fractalhead.c",
            "function": "directblockRead"
        },
        "id": "CVE-2019-20063-404f19df",
        "source": "https://github.com/hoene/libmysofa/commit/e07edb39e9ecc796127cd748ada4a4bac88cb5d2",
        "digest": {
            "length": 4260.0,
            "function_hash": "328880872378914765005939255405185543561"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function"
    },
    {
        "target": {
            "file": "src/hdf/fractalhead.c"
        },
        "id": "CVE-2019-20063-b5de98d4",
        "source": "https://github.com/hoene/libmysofa/commit/e07edb39e9ecc796127cd748ada4a4bac88cb5d2",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "327450119867057413196112788322635289809",
                "9142477717232231720464254396353794803",
                "306551394601581249222330059303544984997",
                "212725765374736972277751008736718580393",
                "147841328434198515238758014161611012765",
                "78431079500622347637056678094094913883",
                "324854849121731529451832255446721945828",
                "174166082281745376657080985686173605776",
                "71892231947832118433842673422764894367",
                "66772769027897273435728406033142410531",
                "229786284638814089070613681383340953847",
                "89022206491473755382512861302976300312",
                "214661617457306383570695756895132914755",
                "50268361982437051317672594679221604193",
                "37314421827654367695053394627950461639"
            ]
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-20063.json"