OSV-2022-147

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libplist/OSV-2022-147.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-147
Published
2022-02-13T00:01:52.104750Z
Modified
2022-04-13T03:04:39.871047Z
Summary
Heap-buffer-overflow in parse_primitive
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44574

Crash type: Heap-buffer-overflow READ 1
Crash state:
parse_primitive
plist_from_json
jplist_fuzzer.cc
References

Affected packages

OSS-Fuzz / libplist

Package

Name
libplist
Purl
pkg:generic/libplist

Affected ranges

Type
GIT
Repo
https://github.com/libimobiledevice/libplist
Events
Introduced
7e45a2ee6e407d36374eb6c3d5196e768c246115
Fixed
7d2cdc6f378f1d6d5631b7739398dd50bea62663

Ecosystem specific 

{
    "severity": "MEDIUM"
}