OSV-2020-1017

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensc/OSV-2020-1017.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1017
Published
2020-07-22T21:49:40.221914Z
Modified
2022-04-13T03:04:41.665375Z
Summary
Heap-buffer-overflow in decode_bit_string
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16614

Crash type: Heap-buffer-overflow READ 1
Crash state:
decode_bit_string
sc_asn1_print_bit_string
print_tags_recursive
References

Affected packages

OSS-Fuzz / opensc

Package

Name
opensc
Purl
pkg:generic/opensc

Affected ranges

Type
GIT
Repo
https://github.com/OpenSC/OpenSC
Events
Introduced
b0241eefa1b47f1420456f5dbc43564d59961a54
Fixed
9b4b080be788a602fa8f01ac8d7e29cdaad07902

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:b0241eefa1b47f1420456f5dbc43564d59961a54"
}