{"id":"CVE-2019-25050","details":"netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (called from netCDFDataset::~netCDFDataset and netCDFDataset::~netCDFDataset).","aliases":["PYSEC-2021-888"],"modified":"2026-04-11T09:40:00.238278Z","published":"2021-07-20T07:15:07.603Z","references":[{"type":"ADVISORY","url":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/gdal/OSV-2020-420.yaml"},{"type":"ADVISORY","url":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/gdal/OSV-2020-392.yaml"},{"type":"FIX","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15143"},{"type":"FIX","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15156"},{"type":"FIX","url":"https://github.com/OSGeo/gdal/commit/27b9bf644bcf1208f7d6594bdd104cc8a8bb0646"},{"type":"FIX","url":"https://github.com/OSGeo/gdal/commit/767e3a56144f676ca738ef8f700e0e56035bd05a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/osgeo/gdal","events":[{"introduced":"825662d03251faac29c5c683c74694ba56124e90"},{"last_affected":"ee535a1a3f5b35b0d231e1faac89ac1f889f7988"},{"fixed":"27b9bf644bcf1208f7d6594bdd104cc8a8bb0646"},{"fixed":"767e3a56144f676ca738ef8f700e0e56035bd05a"}],"database_specific":{"versions":[{"introduced":"2.4.2"},{"last_affected":"3.0.4"}]}}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-25050.json","vanir_signatures_modified":"2026-04-11T09:40:00Z","vanir_signatures":[{"source":"https://github.com/osgeo/gdal/commit/27b9bf644bcf1208f7d6594bdd104cc8a8bb0646","signature_type":"Line","signature_version":"v1","id":"CVE-2019-25050-112c1677","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["182114019274330504405524429607708237822","260345988463686926761865667168934854869","281242935202487707059003033430704216315","223919040550938216905341524769853078179"]},"target":{"file":"gdal/ogr/ogrsf_frmts/kml/ogrkmllayer.cpp"}},{"source":"https://github.com/osgeo/gdal/commit/767e3a56144f676ca738ef8f700e0e56035bd05a","signature_type":"Function","signature_version":"v1","id":"CVE-2019-25050-883d9465","deprecated":false,"digest":{"function_hash":"302002118971741846913773595126247519048","length":387},"target":{"file":"gdal/frmts/netcdf/netcdfsg.cpp","function":"attrf"}},{"source":"https://github.com/osgeo/gdal/commit/27b9bf644bcf1208f7d6594bdd104cc8a8bb0646","signature_type":"Function","signature_version":"v1","id":"CVE-2019-25050-bb04300f","deprecated":false,"digest":{"function_hash":"35271287751527571686749642692254647707","length":1654},"target":{"file":"gdal/ogr/ogrsf_frmts/kml/ogrkmllayer.cpp","function":"OGRKMLLayer::OGRKMLLayer"}},{"source":"https://github.com/osgeo/gdal/commit/767e3a56144f676ca738ef8f700e0e56035bd05a","signature_type":"Line","signature_version":"v1","id":"CVE-2019-25050-df3c9cf9","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["330050799991627139372582363810828850986","43288583624019282758956658056096911854","133106679127093124975071662172322506616","61584344147969714699023128396183080815","29247339718509823662230292100691496337","70259280790122801849175533546147055310","197632885844845454462511212044286891895","219460695381383478241253996762517383813","274345183051428644925453191461116232451","865604286249530944125010970242137511","161961644178719221901322991508777035874","156670885929672163293618591419657972737","213942214105901386467656383532137497463","246811575906086634005411652434159240053","63473041997612762628719516071506648911","209170788878360836903109474419753571184","137639027989884651640185728037995258365"]},"target":{"file":"gdal/frmts/netcdf/netcdfsg.cpp"}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}