CVE-2026-31971 | samtools htslib up to 1.21.0/1.22.1/1.23 cram_byte_array_len_decode stack-based overflow (GHSA-jvx4-4wq7-6fmh)

A vulnerability classified as critical was found in samtools htslib up to 1.21.0/1.22.1/1.23. This impacts the function cram_byte_array_len_decode. The manipulation results in stack-based buffer overflow.

This vulnerability is cataloged as CVE-2026-31971. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More