OSV-2020-1008

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libhevc/OSV-2020-1008.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-1008

Published

2020-07-22T21:49:39.707812Z

Modified

2023-04-20T22:39:10.635628Z

Summary

Use-of-uninitialized-value in ihevc_recon_32x32

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20476

Crash type: Use-of-uninitialized-value
Crash state:
ihevc_recon_32x32
ihevcd_iquant_itrans_recon_ctb
ihevcd_process

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20476

Affected packages

OSS-Fuzz / libhevc

Package

Name: libhevc
Purl: pkg:generic/libhevc

Affected ranges

Type: GIT
Repo: https://android.googlesource.com/platform/external/libhevc
Events: Introduced

d28f2210ee8e65afdfb07a1fd6582285d3d178e0

Fixed

229e7ee2142c0f78c7736518a5c8cc1d131f4a30

Fixed

35d222d35253c15e130762fcf54a43d4543a2785

Affected versions

android-10.*

android-10.0.0_r12

android-10.0.0_r13

android-10.0.0_r14

android-10.0.0_r30

android-10.0.0_r31

android-10.0.0_r32

android-10.0.0_r33

android-10.0.0_r34

android-10.0.0_r35

android-10.0.0_r36

android-10.0.0_r7

android-10.0.0_r8

android-10.0.0_r9

android-mainline-10.*

android-mainline-10.0.0_r10

android-mainline-10.0.0_r11

android-mainline-10.0.0_r12

android-mainline-10.0.0_r13

android-mainline-10.0.0_r5

android-mainline-10.0.0_r6

android-mainline-10.0.0_r7

android-mainline-10.0.0_r8

android-mainline-10.0.0_r9

android-mainline-12.*

android-mainline-12.0.0_r111

android-mainline-12.0.0_r54

Other

android-r-preview-1

android-r-preview-2

android-r-preview-3

android-r-preview-4

q_tzdata_aml_294400310

q_tzdata_aml_295500001

q_tzdata_aml_295500002

q_tzdata_aml_295600110

q_tzdata_aml_295600118

platform-tools-29.*

platform-tools-29.0.5

platform-tools-29.0.6

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:d28f2210ee8e65afdfb07a1fd6582285d3d178e0"
}