OSV-2020-2264

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openthread/OSV-2020-2264.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-2264
Published
2020-12-16T00:00:05.494996Z
Modified
2022-04-13T03:04:38.967076Z
Summary
Stack-buffer-overflow in ot::IsValidUtf8String
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28682

Crash type: Stack-buffer-overflow READ 1
Crash state:
ot::IsValidUtf8String
ot::MeshCoP::NetworkNameTlv::IsValid
ot::MeshCoP::Tlv::IsValid
References

Affected packages

OSS-Fuzz / openthread

Package

Name
openthread
Purl
pkg:generic/openthread

Affected ranges

Type
GIT
Repo
https://github.com/openthread/openthread
Events
Introduced
c7192ba7988d6487e6bd8789198ce8196a9c992b
Fixed
b3fc7bc453034aa61cd27d5208f08ead9c7789e0

Ecosystem specific 

{
    "severity": "MEDIUM"
}