OSV-2020-2083

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wolfssl/OSV-2020-2083.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-2083

Published

2020-10-18T00:00:41.563494Z

Modified

2022-04-13T03:04:35.684870Z

Summary

Heap-buffer-overflow in clean_path

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26424

Crash type: Heap-buffer-overflow READ {*}
Crash state:
clean_path
ParseScpCommand
DoScpRequest

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26424

Affected packages

OSS-Fuzz / wolfssl

Package

Name: wolfssl
Purl: pkg:generic/wolfssl

Affected ranges

Type: GIT
Repo: https://github.com/wolfssl/wolfssl
Events: Introduced

83cdd1c314af5d6326470254b3cdbb9d85182348

Fixed

3050f288909e53d8fdc54651328fcc6de6616ff9

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "deaf3b4b40d26663191d085557fbeb8cafa420ae:881657782478cef4a1527847bb2c4cd427bd6c99",
    "fixed_range": "937a7ce8ced5f316668865db28c36c3111e65e43:3050f288909e53d8fdc54651328fcc6de6616ff9"
}