USN-3974-1: VCFtools vulnerabilities
Publication date
13 May 2019
Overview
VCFTools could be made to crash if it received specially crafted input.
Releases
Packages
- vcftools - Collection of tools to work with VCF files
Details
It was discovered that VCFtools improperly handled certain input. If a user
was tricked into opening a crafted input file, VCFtools could be made to crash.
(CVE-2018-11099, CVE-2018-11129, CVE-2018-11130)
It was discovered that VCFtools improperly handled certain input. If a user
was tricked into opening a crafted input file, VCFtools could be made to crash.
(CVE-2018-11099, CVE-2018-11129, CVE-2018-11130)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 16.04 xenial | vcftools – 0.1.14+dfsg-2ubuntu0.1 | ||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.