OSV-2021-1425

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/freeradius/OSV-2021-1425.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-1425
Published
2021-10-09T00:00:09.054154Z
Modified
2022-04-13T03:04:40.120596Z
Summary
Heap-buffer-overflow in fr_dns_label_to_value_box
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39689

Crash type: Heap-buffer-overflow READ 1
Crash state:
fr_dns_label_to_value_box
decode_value_trampoline
fr_struct_from_network
References

Affected packages

OSS-Fuzz / freeradius

Package

Name
freeradius
Purl
pkg:generic/freeradius

Affected ranges

Type
GIT
Repo
https://github.com/FreeRADIUS/freeradius-server.git
Events
Introduced
3882a233ede1ece51e5b6ebdc3c90b37ccc7223a
Fixed
66e59da0336526c1f2d2d49aa12838b26d0e8240

Ecosystem specific 

{
    "severity": "MEDIUM"
}