OSV-2020-631

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libhevc/OSV-2020-631.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-631

Published

2020-07-01T00:00:21.458072Z

Modified

2023-04-20T22:46:26.642150Z

Summary

Stack-use-after-return in ihevcd_process_thread

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17500

Crash type: Stack-use-after-return READ 8
Crash state:
ihevcd_process_thread
start_thread

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17500

Affected packages

OSS-Fuzz / libhevc

Package

Name: libhevc
Purl: pkg:generic/libhevc

Affected ranges

Type: GIT
Repo: https://android.googlesource.com/platform/external/libhevc
Events: Introduced

67e394c9f3743b8ce41f11736136319efcef6d3d

Fixed

1f4c96297b05958d0eaae0dc657f515a0905ca26

Affected versions

android-10.*

android-10.0.0_r12

android-10.0.0_r13

android-10.0.0_r14

android-10.0.0_r30

android-10.0.0_r31

android-10.0.0_r32

android-10.0.0_r33

android-10.0.0_r34

android-10.0.0_r35

android-10.0.0_r36

android-10.0.0_r7

android-10.0.0_r8

android-10.0.0_r9

android-mainline-10.*

android-mainline-10.0.0_r10

android-mainline-10.0.0_r11

android-mainline-10.0.0_r12

android-mainline-10.0.0_r13

android-mainline-10.0.0_r5

android-mainline-10.0.0_r6

android-mainline-10.0.0_r7

android-mainline-10.0.0_r8

android-mainline-10.0.0_r9

android-mainline-12.*

android-mainline-12.0.0_r111

android-mainline-12.0.0_r54

platform-tools-29.*

platform-tools-29.0.5

Other

q_tzdata_aml_294400310

q_tzdata_aml_295500001

q_tzdata_aml_295500002

q_tzdata_aml_295600110

q_tzdata_aml_295600118