OSV-2017-91

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wpantund/OSV-2017-91.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2017-91

Published

2021-01-13T21:57:39.977856Z

Modified

2022-04-13T03:04:33.940188Z

Summary

UNKNOWN READ in spinel_datatype_vunpack_

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4790

Crash type: UNKNOWN READ
Crash state:
spinel_datatype_vunpack_
spinel_datatype_unpack
nl::wpantund::SpinelNCPInstance::handle_ncp_spinel_value_inserted

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4790

Affected packages

OSS-Fuzz / wpantund

Package

Name: wpantund
Purl: pkg:generic/wpantund

Affected ranges

Type: GIT
Repo: https://github.com/openthread/wpantund
Events: Introduced

d7df81c8a0bc8b9293ecc2f1a247a724f67c0fe7

Fixed

7838e0c00a8599cc964cdd19c972ebaeb17bfcbe

Fixed

ed49abb6e8242d1e645691747610d8156ab7cba4

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "7f7fe1c5423350b3422db4bfb8e2ae1b2be68eec:120ef3e004f2a6df1a960191440436d9ba78fa81"
}

Database specific

{
    "fixed_range": "506ae4043b6dfec5d28325c9fa048911fc61305a:ed49abb6e8242d1e645691747610d8156ab7cba4"
}