Burrow-Wheeler Aligner Project Burrow-Wheeler Aligner (BWA) 0.7.17 R1198

CPE Details

Burrow-Wheeler Aligner Project Burrow-Wheeler Aligner (BWA) 0.7.17 R1198
burrow-wheeler_aligner_project
burrow-wheeler_aligner
0.7.17
2019-09-25
12h48 +00:00
2019-09-25
12h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:burrow-wheeler_aligner_project:burrow-wheeler_aligner:0.7.17:r1198:*:*:*:*:*:*

Informations

Vendor

burrow-wheeler_aligner_project

Product

burrow-wheeler_aligner

Version

0.7.17

Update

r1198

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-11371 2019-04-20 15h23 +00:00 BWA (aka Burrow-Wheeler Aligner) 0.7.17 r1198 has a Buffer Overflow via a long prefix that is mishandled in bns_fasta2bntseq and bns_dump at btnseq.c.
9.8
Critical
CVE-2019-10269 2019-03-29 03h54 +00:00 BWA (aka Burrow-Wheeler Aligner) before 2019-01-23 has a stack-based buffer overflow in the bns_restore function in bntseq.c via a long sequence name in a .alt file.
9.8
Critical
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.