Py-lmdb Project » Py-lmdb : Security Vulnerabilities, CVEs, (Memory corruption)
An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14
An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the case of an unexpected node->mn_hi, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
7.5
EPSS Score
0.16%
Published
2019-09-11
Updated
2020-09-14
An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch does not properly set up mc->mc_pg[mc->top], leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14
An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Max CVSS
9.8
EPSS Score
0.66%
Published
2019-09-11
Updated
2020-09-14
4 vulnerabilities found