OSV-2020-497

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/yara/OSV-2020-497.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-497
Published
2020-07-01T00:00:13.107969Z
Modified
2022-04-13T03:04:42.182726Z
Summary
Heap-buffer-overflow in str_table_entry
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13956

Crash type: Heap-buffer-overflow READ 1
Crash state:
str_table_entry
parse_elf_header_64_be
elf__load
References

Affected packages

OSS-Fuzz / yara

Package

Name
yara
Purl
pkg:generic/yara

Affected ranges

Type
GIT
Repo
https://github.com/VirusTotal/yara.git
Events
Introduced
77288a93d1fd10a3813a2422fdad011767e800a7
Fixed
462ffd339228ac57d98e8034239d122e4303f653

Ecosystem specific 

{
    "severity": "MEDIUM"
}