OSV-2022-115

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libplist/OSV-2022-115.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-115

Published

2022-02-04T00:00:20.060698Z

Modified

2022-04-13T03:04:39.882511Z

Summary

UNKNOWN READ in unescape_string

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44300

Crash type: UNKNOWN READ
Crash state:
unescape_string
parse_string
parse_object

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44300

Affected packages

OSS-Fuzz / libplist

Package

Name: libplist
Purl: pkg:generic/libplist

Affected ranges

Type: GIT
Repo: https://github.com/libimobiledevice/libplist
Events: Introduced

31a353b57152e7b44254853520a06568a4a91dce

Fixed

7bc4d2f14e5a0bb80fd7342f954554947b9fee01

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

{
    "introduced_range": "f3c65feb0e1f4e177a75ba936d0730f7c3f4b076:7e45a2ee6e407d36374eb6c3d5196e768c246115",
    "fixed_range": "db4635a081b03eb9a2ea310bfb2f994fd9d4ee94:7bc4d2f14e5a0bb80fd7342f954554947b9fee01"
}