** DISPUTED ** An issue has been found in HTSlib 1.8. It is a memory leak in bgzf_getline in bgzf.c. NOTE: the software maintainer's position is that the "failure to free memory" can be fixed in applications that use the HTSlib library (such as test/test_bgzf.c in the original report) and is not a library issue.
References
Link | Resource |
---|---|
https://github.com/samtools/htslib/issues/731#issue-339662537 | Exploit Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2018-07-10 18:29
Updated : 2024-08-05 10:15
NVD link : CVE-2018-13843
Mitre link : CVE-2018-13843
CVE.ORG link : CVE-2018-13843
JSON object : View
Products Affected
htslib
- htslib
CWE
CWE-772
Missing Release of Resource after Effective Lifetime