htslib

Top products

The 15 most recently published vulnerabilities affecting htslib.

• CVE-2026-31971HTSlib CRAM decoder vulnerable to buffer overflow8.1Mar 18, 2026
• CVE-2026-31970HTSlib BGZF index file reader has a heap buffer overflow8.1Mar 18, 2026
• CVE-2026-31969HTSlib CRAM decoder has a heap buffer overflow8.1Mar 18, 2026
• CVE-2026-31968HTSlib CRAM decoder vulnerable to buffer overflow8.1Mar 18, 2026
• CVE-2026-31967HTSlib CRAM reader has out-of-bounds read due to improper validation of input9.1Mar 18, 2026
• CVE-2026-31966HTSlib CRAM reader has out-of-bounds read due to improper validation of input9.1Mar 18, 2026
• CVE-2026-31965HTSlib CRAM reader has out-of-bounds reads due to improper validation of input8.2Mar 18, 2026
• CVE-2026-31964HTSlib CRAM decoder has a NULL Pointer Dereference7.5Mar 18, 2026
• CVE-2026-31963HTSlib CRAM reader has heap buffer overflow due to improper validation of input8.1Mar 18, 2026
• CVE-2026-31962HTSlib CRAM reader has heap buffer overflow due to improper validation of input8.8Mar 18, 2026
• CVE-2020-36403HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read).8.8Jul 1, 2021
• CVE-2018-14329In HTSlib 1.8, a race condition in cram/cram_io.c might allow local users to overwrite arbitrary files via a symlink attack.4.7Jul 17, 2018
• CVE-2018-13845An issue has been found in HTSlib 1.8. It is a buffer over-read in sam_parse1 in sam.c.9.8Jul 10, 2018
• CVE-2018-13844An issue has been found in HTSlib 1.8. It is a memory leak in fai_read in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib user...7.5Jul 10, 2018
• CVE-2018-13843An issue has been found in HTSlib 1.8. It is a memory leak in bgzf_getline in bgzf.c. NOTE: the software maintainer's position is that the "failure to free memory" can be fixed in applications that...7.5Jul 10, 2018