OSV-2021-760

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/assimp/OSV-2021-760.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-760

Published

2021-05-14T00:00:07.433655Z

Modified

2022-04-13T03:04:42.685258Z

Summary

Heap-buffer-overflow in std::__1::char_traits<char>::length

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34230

Crash type: Heap-buffer-overflow READ 1
Crash state:
std::__1::char_traits<char>::length
std::__1::basic_string&lt;char, std::__1::char_traits<char>, std::__1::allocator&lt;ch
ODDLParser::logInvalidTokenError

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34230

Affected packages

OSS-Fuzz / assimp

Package

Name: assimp
Purl: pkg:generic/assimp

Affected ranges

Type: GIT
Repo: https://github.com/assimp/assimp.git
Events: Introduced

cb7d3ac598dcabbbd8b061ba79fd8a4c70468704

Fixed

71a87b653cd4b5671104fe49e2e38cf5dd4d8675

Ecosystem specific

{
    "severity": "MEDIUM"
}