{"id":"CVE-2019-20063","details":"hdf/dataobject.c in libmysofa before 0.8 has an uninitialized use of memory, as demonstrated by mysofa2json.","modified":"2026-04-11T09:39:50.838504Z","published":"2019-12-29T20:15:28.080Z","related":["openSUSE-SU-2021:0444-1","openSUSE-SU-2021:0459-1","openSUSE-SU-2024:10960-1"],"references":[{"type":"ADVISORY","url":"https://github.com/hoene/libmysofa/compare/v0.7...v0.8"},{"type":"REPORT","url":"https://github.com/hoene/libmysofa/issues/67"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/hoene/libmysofa","events":[{"introduced":"0"},{"fixed":"e07edb39e9ecc796127cd748ada4a4bac88cb5d2"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.8"}]}}],"versions":["v0,.4","v0.1","v0.2","v0.4","v0.4(Windows)","v0.5","v0.6","v0.7"],"database_specific":{"vanir_signatures":[{"target":{"function":"directblockRead","file":"src/hdf/fractalhead.c"},"deprecated":false,"id":"CVE-2019-20063-404f19df","signature_type":"Function","digest":{"length":4260,"function_hash":"328880872378914765005939255405185543561"},"signature_version":"v1","source":"https://github.com/hoene/libmysofa/commit/e07edb39e9ecc796127cd748ada4a4bac88cb5d2"},{"target":{"file":"src/hdf/fractalhead.c"},"deprecated":false,"id":"CVE-2019-20063-b5de98d4","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["327450119867057413196112788322635289809","9142477717232231720464254396353794803","306551394601581249222330059303544984997","212725765374736972277751008736718580393","147841328434198515238758014161611012765","78431079500622347637056678094094913883","324854849121731529451832255446721945828","174166082281745376657080985686173605776","71892231947832118433842673422764894367","66772769027897273435728406033142410531","229786284638814089070613681383340953847","89022206491473755382512861302976300312","214661617457306383570695756895132914755","50268361982437051317672594679221604193","37314421827654367695053394627950461639"]},"signature_version":"v1","source":"https://github.com/hoene/libmysofa/commit/e07edb39e9ecc796127cd748ada4a4bac88cb5d2"}],"vanir_signatures_modified":"2026-04-11T09:39:50Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-20063.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}