OSV-2020-1565

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/nanopb/OSV-2020-1565.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1565
Published
2020-08-02T00:00:39.707050Z
Modified
2022-04-13T03:04:32.612067Z
Summary
Heap-buffer-overflow in allocate_field
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24586

Crash type: Heap-buffer-overflow WRITE 8
Crash state:
allocate_field
pb_dec_string
decode_basic_field
References

Affected packages

OSS-Fuzz / nanopb

Package

Name
nanopb
Purl
pkg:generic/nanopb

Affected ranges

Type
GIT
Repo
https://github.com/nanopb/nanopb
Events
Introduced
a5988446e6a257a1c968f8a7a6366f5101d85413
Fixed
cf507d1b1e71b45136ca2bd7d37b7b4958443cd1

Ecosystem specific 

{
    "severity": "HIGH"
}