OSV-2020-941

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libspectre/OSV-2020-941.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-941
Published
2020-07-22T00:00:20.220294Z
Modified
2022-04-13T03:04:34.993532Z
Summary
Heap-buffer-overflow in gc_mark_string
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19780

Crash type: Heap-buffer-overflow READ 4
Crash state:
gc_mark_string
gc_trace
gs_gc_reclaim
References

Affected packages

OSS-Fuzz / libspectre

Package

Name
libspectre
Purl
pkg:generic/libspectre

Affected ranges

Type
GIT
Repo
https://gitlab.freedesktop.org/libspectre/libspectre.git
Events
Introduced
ceeeec8ee480c9cce066c0921665ef647bd5c135
Fixed
920c30cf1d4353b28266fc91f88b2ae72e0f5e4f

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:ceeeec8ee480c9cce066c0921665ef647bd5c135"
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libspectre/OSV-2020-941.yaml"