CVE-2019-16091
Published: 8 September 2019
Symonics libmysofa 0.7 has an out-of-bounds read in directblockRead in hdf/fractalhead.c.
Priority
Severity score breakdown
Parameter | Value |
---|---|
Base score | 7.5 |
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | None |
Availability impact | None |
Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
References
- https://github.com/hoene/libmysofa/compare/f571522...e07edb3
- https://github.com/hoene/libmysofa/commit/af9bbedcba2cd125fe36fa9058bd91303643472b
- https://github.com/hoene/libmysofa/commit/e07edb39e9ecc796127cd748ada4a4bac88cb5d2
- https://ubuntu.com/security/notices/USN-4473-1
- https://www.cve.org/CVERecord?id=CVE-2019-16091
- NVD
- Launchpad
- Debian