OSV-2021-997

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-997

Published

2021-07-14T00:01:21.159182Z

Modified

2022-06-16T00:04:17.868354Z

Summary

Heap-buffer-overflow in ZSTD_createDDict_advanced

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36103

Crash type: Heap-buffer-overflow READ {*}
Crash state:
ZSTD_createDDict_advanced
ZSTD_createDDict
blosc_run_decompression_with_context

References

Affected packages

Type: GIT
Repo: https://github.com/Blosc/c-blosc2.git
Events: Introduced

861ba79f31393dec0a0782ca11cf32cebb6f6610

Fixed

7f4574f51ad7db56fc13de89e13e7893b1a82189

v2.0.0

v2.0.0-rc2

v2.0.0.rc1

v2.0.1

v2.0.2

v2.0.3

v2.0.4

v2.1.0

v2.1.1

{
    "severity": "MEDIUM"
}