OSV-2021-330

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/relic/OSV-2021-330.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-330
Published
2021-02-09T00:02:19.523920Z
Modified
2022-04-13T03:04:33.887695Z
Summary
Heap-buffer-overflow in bn_sqr_karat_imp
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30537

Crash type: Heap-buffer-overflow WRITE 8
Crash state:
bn_sqr_karat_imp
bn_sqr_karat
cryptofuzz::module::relic_bignum::Sqr::Run
References

Affected packages

OSS-Fuzz / relic

Package

Name
relic
Purl
pkg:generic/relic

Affected ranges

Type
GIT
Repo
https://github.com/relic-toolkit/relic.git
Events
Introduced
1cca0a522ca280c7c8ba5e1288a54d9ecde627b4
Fixed
707708d83188b04ea0b7b0ae2487aa8ac7e62f41
Fixed
c76f09859ceea718c2d49ac4c6d9a9eeb13d04a9

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "c24ac176dab278c3a202503c0be4cdfe194d5f81:c76f09859ceea718c2d49ac4c6d9a9eeb13d04a9"
}