OSV-2020-1573

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/arduinojson/OSV-2020-1573.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-1573

Published

2020-08-04T00:00:11.334079Z

Modified

2022-04-13T03:04:39.357700Z

Summary

Use-of-uninitialized-value in void ArduinoJsonNUMBER_71::Utf8::encodeCodepoint<ArduinoJsonNUMBER_71::StringCop

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24633

Crash type: Use-of-uninitialized-value
Crash state:
void ArduinoJsonNUMBER_71::Utf8::encodeCodepoint&lt;ArduinoJsonNUMBER_71::StringCop
ArduinoJsonNUMBER_71::JsonDeserializer&lt;ArduinoJsonNUMBER_71::BoundedReader&lt;unsig
ArduinoJsonNUMBER_71::JsonDeserializer&lt;ArduinoJsonNUMBER_71::BoundedReader&lt;unsig

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24633

Affected packages

OSS-Fuzz / arduinojson

Package

Name: arduinojson
Purl: pkg:generic/arduinojson

Affected ranges

Type: GIT
Repo: https://github.com/bblanchon/ArduinoJson.git
Events: Introduced

298864bafe080e6a0a42185445b278be92820110

Fixed

96b65713528476eed35dbab690be837967cedb93

Affected versions

v6.*

v6.16.0

Ecosystem specific

{
    "severity": "MEDIUM"
}