OSV-2021-1139

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-1139

Published

2021-08-17T00:00:46.311888Z

Modified

2022-04-13T03:21:26.357825Z

Summary

UNKNOWN READ in exif_mnote_data_apple_load

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=37234

Crash type: UNKNOWN READ
Crash state:
exif_mnote_data_apple_load
exif_mnote_data_load
interpret_maker_note

References

Affected packages

Type: GIT
Repo: https://github.com/libvips/libvips
Events: Introduced

57d8dd3ecee292f8e2928ae4a9a0282a9b300655

Fixed

9d186c9cd4566b1dd34739bfeb6f4f57d6c73ff8

Fixed

728f2e29053d03ad5d82b4bbfbc1ca91f24e7cf6

v8.11.3

v8.11.4

{
    "severity": "MEDIUM",
    "introduced_range": "1ce301812d1c44ca6421ed93d6ba1ec4b1d14433:9d186c9cd4566b1dd34739bfeb6f4f57d6c73ff8"
}

{
    "fixed_range": "9d186c9cd4566b1dd34739bfeb6f4f57d6c73ff8:728f2e29053d03ad5d82b4bbfbc1ca91f24e7cf6"
}