OSV-2020-143

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/qt/OSV-2020-143.yaml

Published

2020-06-24T01:51:16.055970Z

Modified

2023-02-24T02:09:45.849924Z

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21909

Crash type: Heap-buffer-overflow READ 4
Crash state:
QSpecialInteger&lt;QBigEndianStorageType&lt;unsigned int> >::operator unsigned int
QIcc::fromIccProfile
QColorSpace::fromIccProfile

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21909

Affected packages

OSS-Fuzz / qt

Package

Name: qt

Affected ranges

Type: GIT
Repo: git://code.qt.io/qt/qtbase.git
Events: Introduced

13873c6bc6e9514e4b6d4e11f7100863a439e33c

Fixed

6ebef2eb9a6a3630f9142fb040c3f87ba8eeac8e

Fixed

f4b02da372a602b792c39d97d72727efbd86b37c

Affected versions

v5.*

v5.14.2

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "cc106ce56550ebfc7e1808e1b9015f5618d9f5e5:e10e5318bc02a48a866b76b6f0b7f268d16af642",
    "fixed_range": "538223d10d133d23133db1ec7a50cb2775aca657:76fe36645eb41fa35e526a97874f1e15a39c3823"
}

Database specific

{
    "fixed_range": "38139878ffdfea6b45d61bc3d071e7a244264516:f4b02da372a602b792c39d97d72727efbd86b37c"
}