SAMtools is a program for reading, manipulating and writing bioinformatics file formats. Starting in version 1.17, in the cram-size command, used to write information about how well CRAM files are compressed, a check to see if the `cram_decode_compression_header()` was missing. If the function returned an error, this could lead to a NULL pointer dereference.
Exploiting this bug causes a NULL pointer dereference. Typically this will cause the program to crash. Versions 1.23.1, 1.22.2 and 1.21.1 include fixes for this issue.
There is no workaround for this issue.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
None
No data leak
Integrity
Low
Partial data modification
Availability
Low
Partial disruption
CVSS Vector v4.0
Weakness Type (CWE)
Vulnerable Products 3
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Samtools Samtools
cpe:2.3:a:samtools:samtools:*:*:*:*:*:*:*:*
|
1.17
|
<= 1.21.1
|
|
Samtools Samtools
cpe:2.3:a:samtools:samtools:*:*:*:*:*:*:*:*
|
1.22
|
1.22.2
|
|
Samtools Samtools
cpe:2.3:a:samtools:samtools:1.23:*:*:*:*:*:*:*
|
— | — |
References 3
https://github.com/samtools/samtools/commit/06fc2a219b3d7c94d3f412c09f6d1efd511…
security-advisories@github.com
https://github.com/samtools/samtools/security/advisories/GHSA-x86f-q6fj-cm43
security-advisories@github.com
http://www.openwall.com/lists/oss-security/2026/03/18/12
af854a3a-2127-422b-91ae-364da2661108