OSV-2021-1039

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/serenity/OSV-2021-1039.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-1039

Published

2021-07-22T00:01:20.342791Z

Modified

2022-04-13T03:04:32.103963Z

Summary

Use-after-poison in AK::RefPtr<AK::StringImpl, AK::RefPtrTraits<AK::StringImpl> >::RefPtr

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36388

Crash type: Use-after-poison WRITE 8
Crash state:
AK::RefPtr&lt;AK::StringImpl, AK::RefPtrTraits<AK::StringImpl> >::RefPtr
AK::String::String
JS::abstract_relation

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36388

Affected packages

OSS-Fuzz / serenity

Package

Name: serenity
Purl: pkg:generic/serenity

Affected ranges

Type: GIT
Repo: https://github.com/SerenityOS/serenity
Events: Introduced

94322ea985e6d570602f2b8b50cb1770be65d442

Fixed

5217875f6ae204e6b23862ab28549364599a9729

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

{
    "fixed_range": "a34a9e86986ca5a8b15ede1bdfe91b64aefee20b:5217875f6ae204e6b23862ab28549364599a9729"
}