OSV-2022-110

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/zstd/OSV-2022-110.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-110
Published
2022-02-01T00:01:50.971611Z
Modified
2022-04-13T03:04:31.686195Z
Summary
Heap-buffer-overflow in ZSTD_compressLiterals
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44239

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
ZSTD_compressLiterals
ZSTD_entropyCompressSeqStore
ZSTD_compressSequences
References

Affected packages

OSS-Fuzz / zstd

Package

Name
zstd
Purl
pkg:generic/zstd

Affected ranges

Type
GIT
Repo
https://github.com/facebook/zstd
Events
Introduced
fc2ea97442460158a92d1e7b7c26e7486e45a605
Fixed
cad9f8d5f9c451b1cc8ce00a16c125e3d2ffc418

Ecosystem specific 

{
    "severity": "HIGH"
}