OSV-2022-1113

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wolfssl/OSV-2022-1113.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-1113

Published

2022-10-29T00:02:15.234535Z

Modified

2022-10-29T00:02:15.234747Z

Summary

Heap-buffer-overflow in ForceZero

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52822

Crash type: Heap-buffer-overflow WRITE 8
Crash state:
ForceZero
BuildMessage
SendFinished

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52822

Affected packages

OSS-Fuzz / wolfssl

Package

Name: wolfssl
Purl: pkg:generic/wolfssl

Affected ranges

Type: GIT
Repo: https://github.com/wolfssl/wolfssl
Events: Introduced

fd7544ca19b5540c8de1c131723b37598ee344c8

Fixed

502a395723148ebc0ae672d4adfeba478169600e

Affected versions

v5.*

v5.5.2-stable

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

{
    "introduced_range": "1c09a67f6ae08d4a31f153eebdf79325d451eea6:319901a85cb8a72e0cd6b829a3009b664dc77ae2",
    "fixed_range": "0ea0b887a51771cc1668d71b9113bbc286dd4f8a:502a395723148ebc0ae672d4adfeba478169600e"
}