OSV-2021-448

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/grok/OSV-2021-448.yaml
Published
2021-02-26T00:00:17.945183Z
Modified
2022-09-24T00:26:57.953149Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31365

Crash type: Use-of-uninitialized-value
Crash state:
std::__1::__packaged_task_func&lt;std::__1::__bind<grk::mct::decompress_irrev
std::__1::packaged_task<int
ThreadPool::ThreadPool
References

Affected packages

OSS-Fuzz / grok

grok

Affected ranges

Affected versions

v10.*

v10.0.0
v10.0.0.debian
v10.0.1
v10.0.2
v10.0.3
v10.0.4

v8.*

v8.0.1
v8.0.2
v8.0.3

v9.*

v9.0.0
v9.1.0
v9.2.0
v9.3.0
v9.4.0
v9.5.0
v9.5.0.debian
v9.6.0
v9.7.0
v9.7.1
v9.7.2
v9.7.3
v9.7.4
v9.7.5
v9.7.5.debian
v9.7.6
v9.7.7
v9.7.8

Ecosystem specific

{
    "severity": "MEDIUM"
}