OSV-2020-2112

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/cras/OSV-2020-2112.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-2112
Published
2020-10-31T00:00:32.556884Z
Modified
2022-04-13T03:04:42.587032Z
Summary
Heap-buffer-overflow in ccr_handle_message_from_client
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26739

Crash type: Heap-buffer-overflow READ {*}
Crash state:
ccr_handle_message_from_client
cras_rclient_buffer_from_client
rclient_message.cc
References

Affected packages

OSS-Fuzz / cras

Package

Name
cras
Purl
pkg:generic/cras

Affected ranges

Type
GIT
Repo
https://chromium.googlesource.com/chromiumos/third_party/adhd
Events
Introduced
91706175e0494084b36d98aac31ad3f6c5691ec1
Fixed
e37374a1af08505a76352d21e0959977e210d0b1
Introduced
e5482ce00f51003ea4642f6c722d1f46fff9a573

Ecosystem specific 

{
    "severity": "MEDIUM"
}