OSV-2020-442

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openssl/OSV-2020-442.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-442
Published
2020-07-01T00:00:09.812508Z
Modified
2022-04-13T03:04:38.758794Z
Summary
Heap-buffer-overflow in CRYPTO_strdup
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17715

Crash type: Heap-buffer-overflow READ 14
Crash state:
CRYPTO_strdup
X509V3_add_value
i2v_GENERAL_NAME
References

Affected packages

OSS-Fuzz / openssl

Package

Name
openssl
Purl
pkg:generic/openssl

Affected ranges

Type
GIT
Repo
https://github.com/openssl/openssl.git
Events
Introduced
5053a3766a13f40afb3c89f54d1f9a5eae38a3eb
Fixed
aec9667bd19a8ca9bdd519db3a231a95b9e92674

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openssl/OSV-2020-442.yaml"