OSV-2020-2183

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2020-2183.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-2183
Published
2020-11-25T00:00:12.713716Z
Modified
2022-04-13T03:04:40.174785Z
Summary
Heap-buffer-overflow in Lizard_decompress_safe
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27818

Crash type: Heap-buffer-overflow READ 2
Crash state:
Lizard_decompress_safe
blosc_d
do_job
References

Affected packages

OSS-Fuzz / c-blosc2

Package

Name
c-blosc2
Purl
pkg:generic/c-blosc2

Affected ranges

Type
GIT
Repo
https://github.com/Blosc/c-blosc2.git
Events
Introduced
603cd3d160c28b807c2ca50113fda00bafa51be7
Fixed
3724317f7bd698abb3b3d39a6d785088b9f8db0a

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2020-2183.yaml"