OSV-2020-2264

Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openthread/OSV-2020-2264.yaml
Published
2020-12-16T00:00:05.494996Z
Modified
2022-04-13T03:04:38.967076Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28682

Crash type: Stack-buffer-overflow READ 1
Crash state:
ot::IsValidUtf8String
ot::MeshCoP::NetworkNameTlv::IsValid
ot::MeshCoP::Tlv::IsValid
References

Affected packages

OSS-Fuzz / openthread

Package

Name
openthread

Affected ranges

Type
GIT
Repo
https://github.com/openthread/openthread
Events
Introduced
c7192ba7988d6487e6bd8789198ce8196a9c992b
Fixed
b3fc7bc453034aa61cd27d5208f08ead9c7789e0

Ecosystem specific 

{
    "severity": "MEDIUM"
}