Vulnerability Details CVE-2019-10672
treeRead in hdf/btree.c in libmysofa before 0.7 does not properly validate multiplications and additions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://github.com/hoene/libmysofa/commit/d39a171e9c6a1c44dbdf43f9db6c3fbd887e38c1
- https://github.com/hoene/libmysofa/compare/49aa1c7...2ed84bb
- https://github.com/hoene/libmysofa/releases/tag/v0.7
- https://usn.ubuntu.com/4033-1/
- https://github.com/hoene/libmysofa/commit/d39a171e9c6a1c44dbdf43f9db6c3fbd887e38c1
- https://github.com/hoene/libmysofa/compare/49aa1c7...2ed84bb
- https://github.com/hoene/libmysofa/releases/tag/v0.7
- https://usn.ubuntu.com/4033-1/
Products affected by CVE-2019-10672
-
cpe:2.3:a:symonics:libmysofa:0.1
-
cpe:2.3:a:symonics:libmysofa:0.2
-
cpe:2.3:a:symonics:libmysofa:0.3
-
cpe:2.3:a:symonics:libmysofa:0.4
-
cpe:2.3:a:symonics:libmysofa:0.5
-
cpe:2.3:a:symonics:libmysofa:0.6