Py-lmdb Project » Py-lmdb : Security Vulnerabilities, CVEs, (Memory corruption)

CVE-2019-16227

An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14

CVE-2019-16226

An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the case of an unexpected node->mn_hi, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
7.5
EPSS Score
0.16%
Published
2019-09-11
Updated
2020-09-14

CVE-2019-16225

An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch does not properly set up mc->mc_pg[mc->top], leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14

CVE-2019-16224

An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close