OSV-2021-1344

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/grok/OSV-2021-1344.yaml
Published
2021-09-21T00:01:35.030626Z
Modified
2022-09-24T00:17:05.107943Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39021

Crash type: Heap-buffer-overflow WRITE 4
Crash state:
openhtj2k::T1OpenHTJ2K::decompress
std::__1::__packaged_task_func&lt;std::__1::__bind<grk::T1DecompressScheduler::deco
std::__1::packaged_task<int
References

Affected packages

OSS-Fuzz / grok

grok

Affected ranges

Affected versions

v10.*

v10.0.0
v10.0.0.debian
v10.0.1
v10.0.2
v10.0.3
v10.0.4

v9.*

v9.5.0
v9.5.0.debian
v9.6.0
v9.7.0
v9.7.1
v9.7.2
v9.7.3
v9.7.4
v9.7.5
v9.7.5.debian
v9.7.6
v9.7.7
v9.7.8

Ecosystem specific

{
    "severity": "HIGH"
}