OSV-2022-320

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/lwan/OSV-2022-320.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-320
Published
2022-04-09T00:00:11.593728Z
Modified
2022-04-09T00:00:11.594Z
Summary
Heap-buffer-overflow in lwan_h2_huffman_decode_for_fuzzing
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46506

Crash type: Heap-buffer-overflow READ 8
Crash state:
lwan_h2_huffman_decode_for_fuzzing
h2_huffman_fuzzer.cc
References

Affected packages

OSS-Fuzz / lwan

Package

Name
lwan
Purl
pkg:generic/lwan

Affected ranges

Type
GIT
Repo
https://github.com/lpereira/lwan.git
Events
Introduced
d7fa49968a50107519421d388fd3de60ecb3f17a
Fixed
44283f701359c7b0bcf5e0b5466591c7442d081a

Ecosystem specific 

{
    "severity": "MEDIUM"
}