{"id":"CVE-2019-10269","details":"BWA (aka Burrow-Wheeler Aligner) before 2019-01-23 has a stack-based buffer overflow in the bns_restore function in bntseq.c via a long sequence name in a .alt file.","modified":"2026-03-14T09:31:39.168686Z","published":"2019-03-29T05:29:00.753Z","references":[{"type":"ADVISORY","url":"https://usn.ubuntu.com/4087-1/"},{"type":"FIX","url":"https://github.com/lh3/bwa/pull/232"},{"type":"EVIDENCE","url":"https://coreymhudson.github.io/bwa_vulnerabilties/"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2019-01-23"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"19.04"}]},{"events":[{"introduced":"0"},{"fixed":"2019-01-23"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-10269.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}