OSV-2021-213

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-213

Published

2021-01-20T00:01:17.956363Z

Modified

2022-04-13T03:04:40.462587Z

Summary

Heap-use-after-free in ZSTD_freeDDict

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29705

Crash type: Heap-use-after-free READ {*}
Crash state:
ZSTD_freeDDict
blosc2_free_ctx
blosc2_schunk_free

References

Affected packages

Type: GIT
Repo: https://github.com/Blosc/c-blosc2.git
Events: Introduced

250ca709b73000fe9c96fcc26109f233103b1636

Fixed

c473b21cff5e1a459b4467f18bf7414114f848fd

{
    "severity": "HIGH"
}