CVE-2019-20016 — Out-of-bounds Write in Libmysofa

CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.5%

top 32.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symonics Libmysofa Debian Libmysofa

Timeline

PublishedDec 27

Latest updateMay 24

Description

libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c. NOTE: a download of v0.9 after 2019-12-06 should fully remediate this issue.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/libmysofa< libmysofa 0.9~dfsg0-1 (bookworm)

▶NVDsymonics/libmysofa< 0.9

▶Debiansymonics/libmysofa< 0.9~dfsg0-1+3

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-7m36-g6v3-rhwr: libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMess↗2022-05-24

▶

OSV

CVE-2019-20016: libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMess↗2019-12-27

▶

📋Vendor Advisories

Debian

CVE-2019-20016: libmysofa - libmysofa before 2019-11-24 does not properly restrict recursive function calls,...↗2019

▶