OSV-2022-387

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libredwg/OSV-2022-387.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-387
Published
2022-05-01T00:00:24.004253Z
Modified
2022-07-30T00:11:20.899511Z
Summary
Segv on unknown address in bit_write_TV
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47126

Crash type: Segv on unknown address
Crash state:
bit_write_TV
bit_write_T
dwg_encode_BLOCK
References

Affected packages

OSS-Fuzz / libredwg

Package

Name
libredwg
Purl
pkg:generic/libredwg

Affected ranges

Type
GIT
Repo
https://github.com/LibreDWG/libredwg
Events
Introduced
9ff5da4387fc77fc47c1c1c83cfbf0065d3ce797
Fixed
580e8bbebf18579b97e2c20b032368b9079624ca

Affected versions

0.*
0.12.4.4542
0.12.4.4544
0.12.4.4545
0.12.4.4548
0.12.4.4550
0.12.4.4553
0.12.4.4566
0.12.4.4567
0.12.4.4572
0.12.4.4583
0.12.4.4590
0.12.4.4598
0.12.4.4601
0.12.4.4606
0.12.4.4607
0.12.4.4608
0.12.4.4613
0.12.4.4615

Ecosystem specific 

{
    "severity": null
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libredwg/OSV-2022-387.yaml"