OSV-2020-2070

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wolfssl/OSV-2020-2070.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-2070

Published

2020-10-15T00:00:36.872Z

Modified

2022-04-13T03:04:35.679147Z

Summary

Heap-buffer-overflow in wolfSSH_accept

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26332

Crash type: Heap-buffer-overflow READ 5
Crash state:
wolfSSH_accept
server.c

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26332

Affected packages

OSS-Fuzz / wolfssl

Package

Name: wolfssl
Purl: pkg:generic/wolfssl

Affected ranges

Type: GIT
Repo: https://github.com/wolfssl/wolfssl
Events: Introduced

83cdd1c314af5d6326470254b3cdbb9d85182348

Fixed

d784bd61cd7e899b8ee1ed79043defeeef30031d

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "deaf3b4b40d26663191d085557fbeb8cafa420ae:881657782478cef4a1527847bb2c4cd427bd6c99",
    "fixed_range": "b40543b3421273f5ef1d1849bc44bf4931a92286:d784bd61cd7e899b8ee1ed79043defeeef30031d"
}