VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact (eg. code execution or information disclosure). The component is: The header::add_FILTER_descriptor method in header.cpp. The attack vector is: The victim must open a specially crafted VCF file.
[
{
"product": "vcftools",
"vendor": "VCFTools",
"versions": [
{
"status": "affected",
"version": "< 0.1.15"
}
]
}
]