CVE-2026-31973 | SAMtools up to 1.21.0/1.22.1/1.23 CRAM File Parser cram_decode_compression_header null pointer dereference (GHSA-x86f-q6fj-cm43)

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability was found in SAMtools up to 1.21.0/1.22.1/1.23. It has been declared as problematic. This issue affects the function cram_decode_compression_header of the component CRAM File Parser. The manipulation results in null pointer dereference.

This vulnerability is known as CVE-2026-31973. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-31973 | SAMtools up to 1.21.0/1.22.1/1.23 CRAM File Parser cram_decode_compression_header null pointer dereference (GHSA-x86f-q6fj-cm43)

Post correlati

CVE-2024-28583 | FreeImage 3.19.0 r1909 XPM Image readLine buffer overflow

CVE-2023-49391 | free5GC 3.3.0 on AMF denial of service (Issue 497)

CVE-2024-35744 | Ravidhu Dissanayake Upunzipper Plugin up to 1.0.0 on WordPress path traversal

CVE-2024-5697 | Mozilla Firefox up to 126 Built-In Screenshot information disclosure