OSV-2020-999

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-999

Published

2020-07-22T21:49:39.091716Z

Modified

2022-04-13T03:04:32.354959Z

Summary

UNKNOWN WRITE in vcf_parse_format

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21139

Crash type: UNKNOWN WRITE
Crash state:
vcf_parse_format
vcf_parse
view_vcf

References

Affected packages

Type: GIT
Repo: https://github.com/samtools/htslib.git
Events: Introduced

d8075641275729878bf2455ac9e999fed4263d9e

Fixed

29c294e6842a56ba3b9a24a24a5f6de1575b0961

Fixed

c6ce820d5ccfeca1c38e6644d72ca6543da01eb1

{
    "severity": "HIGH",
    "introduced_range": "unknown:d8075641275729878bf2455ac9e999fed4263d9e"
}

{
    "fixed_range": "8ff8bb328f5d4c2981933ff7847374ddc747d572:c6ce820d5ccfeca1c38e6644d72ca6543da01eb1"
}