OSV-2020-2221

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/uwebsockets/OSV-2020-2221.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-2221

Published

2020-12-04T00:00:11.822761Z

Modified

2022-04-13T03:04:40.965864Z

Summary

UNKNOWN READ in std::__1::pair<unsigned int, void*> uWS::HttpParser::fenceAndConsumePostPadded<0

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28216

Crash type: UNKNOWN READ
Crash state:
std::__1::pair&lt;unsigned int, void*> uWS::HttpParser::fenceAndConsumePostPadded&lt;0
uWS::HttpParser::consumePostPadded
std::__1::__function::__func&lt;LLVMFuzzerTestOneInput::$_0, std::__1::allocator&lt;LL

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28216

Affected packages

OSS-Fuzz / uwebsockets

Package

Name: uwebsockets
Purl: pkg:generic/uwebsockets

Affected ranges

Type: GIT
Repo: https://github.com/uNetworking/uWebSockets.git
Events: Introduced

ad0a9614307f0b3f4def859d560010b4b178f360

Fixed

e30217e787fbd52cc74f6c61b08c2425f56df48e

Ecosystem specific

{
    "severity": "MEDIUM"
}