OSV-2022-1265

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/cryptsetup/OSV-2022-1265.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-1265
Published
2022-12-25T13:01:07.279978Z
Modified
2022-12-25T13:01:07.280239Z
Summary
Heap-buffer-overflow in BITLK_read_sb
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54548

Crash type: Heap-buffer-overflow READ {*}
Crash state:
BITLK_read_sb
_crypt_load_bitlk
crypt_load
References

Affected packages

OSS-Fuzz / cryptsetup

Package

Name
cryptsetup
Purl
pkg:generic/cryptsetup

Affected ranges

Type
GIT
Repo
https://gitlab.com/cryptsetup/cryptsetup.git
Events
Introduced
50e88795281a6ea34ebb47b9845642f0d19b57ec
Fixed
1682e72bf5199c0c8cef32a21929f026b2e1e6d4

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "introduced_range": "c18dcfaa0b91eb48006232fbfadce9e6a9b4a790:8e7f07841e41a1344923e6500eec20fd20ac1c91"
}