An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.

Published : 2019-09-11 15:15 Updated : 2019-10-12 20:15

CVSS Score More info
Score 7.5 / 10
Vendor Product Version URI
Py-lmdb Project Py-lmdb 0.97 cpe:/a:py-lmdb_project:py-lmdb:0.97
  1. Py-lmdb Project (1) Search CVE
    1. Py-lmdb (1) Search CVE
      1. 0.97


ID Name Description Links
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. CVE

History of changes

Date Event
2019-10-12 20:15
2019-09-12 13:51
2019-09-11 15:28