OSV-2021-1625

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/curl/OSV-2021-1625.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-1625
Published
2021-11-26T00:01:33.118188Z
Modified
2022-04-13T03:04:42.946027Z
Summary
Heap-buffer-overflow in junkscan
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41390

Crash type: Heap-buffer-overflow READ 16
Crash state:
junkscan
seturl
parseurl
References

Affected packages

OSS-Fuzz / curl

Package

Name
curl
Purl
pkg:generic/curl

Affected ranges

Type
GIT
Repo
https://github.com/curl/curl.git
Events

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

{
    "introduced_range": "cc2870e275666ef7e4a6c27fa8b99938c6d1ff2f:a5f5687368a5f95415d58d37e8dfb10c6b6d44c5",
    "fixed_range": "a5f5687368a5f95415d58d37e8dfb10c6b6d44c5:2361d11d4c9602937aa081a6899f1b313398514a"
}