OSV-2020-286

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-286

Published

2020-06-30T00:00:46.352280Z

Modified

2022-04-13T03:04:31.658980Z

Summary

Use-of-uninitialized-value in ZSTD_loadCEntropy

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19146

Crash type: Use-of-uninitialized-value
Crash state:
ZSTD_loadCEntropy
ZSTD_loadZstdDictionary
ZSTD_compress_insertDictionary

References

Affected packages

Type: GIT
Repo: https://github.com/facebook/zstd
Events: Introduced

a3a3c62b81ef41fc3edbc991c165ff0acd3a29be

Fixed

49c6d492479227644e60c2caa15a6334f302f6ea

{
    "severity": "MEDIUM"
}