OSV-2021-1070
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2021-1070.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2021-1070
- Withdrawn
- 2024-11-09T08:00:09.680216Z
- Published
- 2021-07-29T00:01:10.187569Z
- Modified
- 2024-07-31T14:06:39.626798Z
- Summary
- Heap-buffer-overflow in ZSTD_decompressBlock_internal
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36623
Crash type: Heap-buffer-overflow READ 4 Crash state: ZSTD_decompressBlock_internal ZSTD_decompressMultiFrame ZSTD_decompressDCtx - References
Affected packages
OSS-Fuzz / c-blosc2
Package
- Name
- c-blosc2
- Purl
- pkg:generic/c-blosc2
Affected versions
v2.*
v2.0.0
v2.0.0-rc2
v2.0.0.rc1
v2.0.1
v2.0.2
v2.0.3
v2.0.4
v2.1.0
v2.1.1
v2.10.0
v2.10.1
v2.10.2
v2.10.3
v2.10.4
v2.10.5
v2.11.0
v2.11.1
v2.11.2
v2.11.3
v2.12.0
v2.13.0
v2.13.1
v2.13.2
v2.14.0
v2.14.1
v2.14.2
v2.14.3
v2.14.4
v2.15.0
v2.15.1
v2.2.0
v2.3.0
v2.3.1
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.5.0
v2.6.0
v2.6.1
v2.7.0
v2.7.1
v2.8.0
v2.9.0
v2.9.1
v2.9.2
v2.9.3