OSV-2020-2304

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wolfssl/OSV-2020-2304.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-2304

Published

2021-01-21T00:00:02.599814Z

Modified

2022-04-13T03:04:35.740457Z

Summary

Use-of-uninitialized-value in memory_test

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29731

Crash type: Use-of-uninitialized-value
Crash state:
memory_test
fuzzer_send
wolfSSH_SendPacket

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29731

Affected packages

OSS-Fuzz / wolfssl

Package

Name: wolfssl
Purl: pkg:generic/wolfssl

Affected ranges

Type: GIT
Repo: https://github.com/wolfssl/wolfssl
Events: Introduced

83cdd1c314af5d6326470254b3cdbb9d85182348

Fixed

5577a2215fcc189c25794ac57775fce3008b476d

Affected versions

v4.*

v4.6.0-stable

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "deaf3b4b40d26663191d085557fbeb8cafa420ae:881657782478cef4a1527847bb2c4cd427bd6c99",
    "fixed_range": "f5f19fda42f7622f405daf69bafdeeec78f4c8b5:5577a2215fcc189c25794ac57775fce3008b476d"
}