samtools htslib library version 1.4.0 and previous versions is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution
htslib htslib