OSV-2021-1386

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/uwebsockets/OSV-2021-1386.yaml

Published

2021-09-28T00:00:12.139414Z

Modified

2022-04-13T03:04:40.960397Z

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39355

Crash type: Container-overflow READ 1
Crash state:
std::__1::__function::__func<uWS::TemplatedApp<true>&& uWS::TemplatedApp<true>::
uWS::TopicTree<uWS::TopicTreeMessage>::publish
uWS::TemplatedApp<true>::publish

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39355

Affected packages

OSS-Fuzz / uwebsockets

Package

Name: uwebsockets

Affected ranges

Type: GIT
Repo: https://github.com/uNetworking/uWebSockets.git
Events: Introduced

a924404bed081bdfa94df54c79395285ca83644c

Fixed

7a3bc47f753c192a54c11a3bfe826d1af8b92eda

Ecosystem specific

{
    "severity": "MEDIUM"
}