OSV-2022-327

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/qt/OSV-2022-327.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-327

Published

2022-04-10T00:01:12.211800Z

Modified

2022-04-27T22:12:36.132079Z

Summary

Stack-use-after-return in QSemaphore::release

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46525

The issue already existed before oss-fuzz could reproduce it. oss-fuzz found it after qdrawhelper routines were made multithreaded. There might be ways to trigger the issue before that.

Crash type: Stack-use-after-return WRITE 8
Crash state:
QSemaphore::release
std::__1::__function::__func&lt;void handleSpans<BlendSrcGeneric>
FunctionRunnable::run

References

Affected packages

OSS-Fuzz / qt

Package

Name: qt
Purl: pkg:generic/qt

Affected ranges

Type: GIT
Repo: git://code.qt.io/qt/qtbase.git
Events: Introduced

b18959ad7ebe2311993348f779087b214bd7a72b

Fixed

da5a55e034c74a42485358cf704e75467a62696e

Fixed

a210635b6d8f7b94453914d6798a83b41964e7ea

Fixed

830b1550de303dd59c29a87c28e44fa41112b8f4

Fixed

05ffea9775e75d7890c833bff3d2e9682072c736

Fixed

fd8441a97cdd212098aeb214b2a5b2caaf108e3c

Ecosystem specific

{
    "severity": null
}

Database specific

{
    "fixed_range": "88532603ff2836249e576e902d322585fc2b3ed2:05ffea9775e75d7890c833bff3d2e9682072c736"
}