OSV-2020-1850

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libfmt/OSV-2020-1850.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-1850

Published

2020-09-26T00:00:33.702898Z

Modified

2022-04-13T03:04:41.471399Z

Summary

Heap-buffer-overflow in fmt::v6::basic_string_view<char>::basic_string_view

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21763

Crash type: Heap-buffer-overflow READ 2
Crash state:
fmt::v6::basic_string_view<char>::basic_string_view
fmt::v6::basic_format_arg<fmt::v6::basic_format_context<std::__1::back_insert_it
fmt::v6::basic_format_context<std::__1::back_insert_iterator<fmt::v6::internal::

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21763

Affected packages

OSS-Fuzz / libfmt

Package

Name: libfmt
Purl: pkg:generic/libfmt

Affected ranges

Type: GIT
Repo: https://github.com/fmtlib/fmt.git
Events: Introduced

8a4630686e2dd24900897298c4ae1362de749ed8

Fixed

c9a57b9a81868188470c611e09accc189383e4ad

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libfmt/OSV-2020-1850.yaml"