OSV-2021-703

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/jsoncons/OSV-2021-703.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-703

Published

2021-04-29T00:00:31.595556Z

Modified

2022-04-13T03:04:39.609564Z

Summary

Container-overflow in unsigned long jsoncons::detail::escape_string<char, jsoncons::string_sink<std::_

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33781

Crash type: Container-overflow READ 1
Crash state:
unsigned long jsoncons::detail::escape_string&lt;char, jsoncons::string_sink&lt;std::_
jsoncons::basic_json_encoder&lt;char, jsoncons::string_sink&lt;std::__1::basic_string&lt;
jsoncons::basic_json_visitor<char>::key

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33781

Affected packages

OSS-Fuzz / jsoncons

Package

Name: jsoncons
Purl: pkg:generic/jsoncons

Affected ranges

Type: GIT
Repo: https://github.com/danielaparker/jsoncons
Events: Introduced

39a59991dff68d488432f59c9bca60001c501d69

Fixed

e0ee905e3e2f2997606f146370af6a5d448aafe5

Ecosystem specific

{
    "severity": "MEDIUM"
}