OSV-2017-8

Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/curl/OSV-2017-8.yaml
Published
2021-01-13T00:00:08.384698Z
Modified
2022-04-13T03:04:42.906669Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4161

Crash type: Heap-buffer-overflow READ 1
Crash state:
setcharset
loop
loop
References

Affected packages

OSS-Fuzz / curl

Package

Name
curl

Affected ranges

Type
GIT
Repo
https://github.com/curl/curl.git
Events
Introduced
7ee59512f875604eb468fb6f3d26e39290f781c9
Fixed
0b664ba968437715819bfe4c7ada5679d16ebbc3
Fixed
cd276c3cca4db23384f3272486468ce41b0a338b

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "1cb4f5d6e8e470638759a48ba99fda230089712f:e240a546a7ac2fa7956adb664b8c40c4dee4f82b"
}

Database specific 

{
    "fixed_range": "c79b2ca03d94d996c23cee13859735cc278838c1:cd276c3cca4db23384f3272486468ce41b0a338b"
}