OSV-2021-1540

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/qpid-proton/OSV-2021-1540.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-1540
Published
2021-11-06T00:01:33.530210Z
Modified
2022-04-13T03:04:36.938644Z
Summary
Heap-buffer-overflow in consume_list
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40723

Crash type: Heap-buffer-overflow READ 1
Crash state:
consume_list
pn_amqp_decode_DqEoQBIoIe
pn_message_decode
References

Affected packages

OSS-Fuzz / qpid-proton

Package

Name
qpid-proton
Purl
pkg:generic/qpid-proton

Affected ranges

Type
GIT
Repo
https://github.com/apache/qpid-proton.git
Events
Introduced
72c87537a136dbfc63a0c811d159631ecd0e3986
Fixed
b788baad3e9d9ba028d3d115e272e94a30227e17

Ecosystem specific 

{
    "severity": "MEDIUM"
}