HTSlib contains multiple vulnerabilities in its file reading code, including heap and stack buffer overflows, heap write overflows, and out-of-bounds reads in BCF, FASTA, and CRAM file format handling. These issues arise from improper validation of input data, leading to potential program crashes, data corruption, or arbitrary code execution when processing maliciously crafted files.
| Vendor | Product | Versions |
|---|---|---|
| samtools | htslib | <=1.23.1 |