OSV-2021-10

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-10

Published

2021-01-04T00:01:27.624698Z

Modified

2022-04-13T03:04:35.662208Z

Summary

Heap-buffer-overflow in sp_tohex

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29185

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
sp_tohex
sp_toradix
cryptofuzz::module::wolfCrypt_bignum::Bignum::baseConversion

References

Affected packages

Type: GIT
Repo: https://github.com/wolfssl/wolfssl
Events: Introduced

81f70fba5f6f3fd4715cbe1d51e3b7e76ce22b5d

Fixed

209c4c08e11c4a72c0d9e91b7e011016fabe1e34

{
    "severity": "HIGH",
    "fixed_range": "0ac43bb09557578be61967e802234e05e087540a:209c4c08e11c4a72c0d9e91b7e011016fabe1e34"
}