Skip to content

Fix more CVE bugs#2913

Merged
ghutchis merged 7 commits into
openbabel:masterfrom
ghutchis:fix-more-cve
May 14, 2026
Merged

Fix more CVE bugs#2913
ghutchis merged 7 commits into
openbabel:masterfrom
ghutchis:fix-more-cve

Conversation

@ghutchis

Copy link
Copy Markdown
Member

No description provided.

ghutchis added 7 commits May 14, 2026 12:59
- CSR - CVE-2022-41793 check buffer size and use memcpy
- Gaussian - CVE-2022-37331  - use C++ string to avoid buffer

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Fixes openbabel#2834

Also add test files and update SECURITY.md for previous fixes

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Fix openbabel#2826 - CVE-2025-11000

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Fixes openbabel#2827

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Fix openbabel#2831

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Fixes CVE-2025-10995
Fix openbabel#2832

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
- Fix openbabel#2829 - CVE-2025-10998
- Fix openbabel#2830 - CVE-2025-10997

Both needed better guards against malformed input

Signed-off-by: Geoff Hutchison <geoff.hutchison@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

1 participant