OSV-2018-31

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dav1d/OSV-2018-31.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2018-31
Published
2021-01-13T00:00:13.344740Z
Modified
2022-04-13T03:04:39.838451Z
Summary
Heap-buffer-overflow in emu_edge_c
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=11389

Crash type: Heap-buffer-overflow READ 2
Crash state:
emu_edge_c
warp_affine
dav1d_recon_b_inter_8bpc
References

Affected packages

OSS-Fuzz / dav1d

Package

Name
dav1d
Purl
pkg:generic/dav1d

Affected ranges

Type
GIT
Repo
https://code.videolan.org/videolan/dav1d.git
Events
Introduced
7ef74ca1005785f0791874d52217aecc76f190cd
Fixed
cf9ec49ac7d0c766ea88ea801c0831bca3e663a9
Fixed
a6b94ca9e5cded0070419a02d9cadaa5f45b2d0d

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "4a646a0ca25a22a809bfcb743332f6b6646d86a3:ec53ec6d5b4ebbb06d5c7209fd4f25634a6ad606"
}

Database specific 

{
    "fixed_range": "ec53ec6d5b4ebbb06d5c7209fd4f25634a6ad606:a6b94ca9e5cded0070419a02d9cadaa5f45b2d0d"
}