OSV-2020-305

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openthread/OSV-2020-305.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-305

Published

2020-06-30T00:00:48.691484Z

Modified

2022-04-13T03:04:39.086968Z

Summary

Stack-buffer-overflow in ot::NetworkData::Leader::SendCommissioningGetResponse

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17297

Crash type: Stack-buffer-overflow READ 1
Crash state:
ot::NetworkData::Leader::SendCommissioningGetResponse
ot::NetworkData::Leader::HandleCommissioningGet
ot::Coap::CoapBase::ProcessReceivedRequest

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17297

Affected packages

OSS-Fuzz / openthread

Package

Name: openthread
Purl: pkg:generic/openthread

Affected ranges

Type: GIT
Repo: https://github.com/openthread/openthread
Events: Introduced

68426e236fe8a15884c3893a2083663687b2610f

Fixed

8be8bf1fdff6181453a2c5e946618186b8b64c54

Ecosystem specific

{
    "severity": "MEDIUM"
}