Miggo Logo
Miggo Vulnerability Database
CVE-2019-16227

CVE-2019-16227: py-lmdb Invalid write operation

9.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2019-16227
GHSA ID
GHSA-pf3p-v9xp-mrvf
EPSS Score
0.40955%
CWE
CWE-787
Published
5/24/2022
Updated
9/30/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
lmdbpip<= 0.97

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability description explicitly identifies mdb_cursor_set as the trigger and mdb_xcursor_init1 as the location of the invalid memcpy operation. Both functions are part of the LMDB C code embedded in py-lmdb (typically in lib/mdb.c). The CWE-787 classification confirms an out-of-bounds write, which aligns with the described memcpy behavior. The functions' roles in cursor initialization and flag handling directly match the attack vector involving malicious data.mdb files.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*n issu* w*s *is*ov*r** in py-lm** *.**. *or **rt*in v*lu*s o* `mn_*l**s`, `m**_*ursor_s*t` tri***rs * m*m*py wit* *n inv*li* writ* op*r*tion wit*in `m**_x*ursor_init*`. NOT*: t*is out*om* o**urs w**n ****ssin* * `**t*.m**` *il* suppli** *y *n *tt**k

Reasoning

T** vuln*r**ility **s*ription *xpli*itly i**nti*i*s m**_*ursor_s*t *s t** tri***r *n* m**_x*ursor_init* *s t** lo**tion o* t** inv*li* m*m*py op*r*tion. *ot* *un*tions *r* p*rt o* t** LM** * *o** *m****** in py-lm** (typi**lly in li*/m**.*). T** *W*-