OSV-2021-1820

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/radare2/OSV-2021-1820.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-1820
Published
2022-06-19T00:00:52.240583Z
Modified
2022-06-19T00:00:52.240913Z
Summary
Heap-buffer-overflow in r_str_utf8_codepoint
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48098

Crash type: Heap-buffer-overflow READ 1
Crash state:
r_str_utf8_codepoint
r_str_char_fullwidth
r_str_len_utf8_ansi
References

Affected packages

OSS-Fuzz / radare2

Package

Name
radare2
Purl
pkg:generic/radare2

Affected ranges

Type
GIT
Repo
https://github.com/radareorg/radare2
Events
Introduced
775f2b3d8d6d44f3312f9911dcf70b203268f387
Fixed
2cfc1d7e12adf87a28ac78abb32233cf39c6d54a

Affected versions

4.*

4.4.0
4.5.1

5.*

5.0.0
5.1.0
5.1.1
5.2.0
5.2.1
5.3.0
5.3.1
5.4.0
5.4.0-git
5.4.2
5.5.0
5.5.2
5.5.4
5.6.0
5.6.2
5.6.4
5.6.6
5.6.8
5.7.0

release-5.*

release-5.0.0

Ecosystem specific 

{
    "severity": "MEDIUM"
}