OSV-2022-486
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2022-486.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2022-486
- Published
- 2022-06-17T00:00:08.687092Z
- Modified
- 2024-10-02T14:11:20.344165Z
- Summary
- Heap-buffer-overflow in frame_get_vlmetalayers
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48052
Crash type: Heap-buffer-overflow READ {*} Crash state: frame_get_vlmetalayers frame_to_schunk blosc2_schunk_from_buffer - References
Affected packages
OSS-Fuzz / c-blosc2
Package
- Name
- c-blosc2
- Purl
- pkg:generic/c-blosc2
Affected versions
v2.*
v2.0.0
v2.0.0-rc2
v2.0.0.rc1
v2.0.1
v2.0.2
v2.0.3
v2.0.4
v2.1.0
v2.1.1
v2.10.0
v2.10.1
v2.10.2
v2.10.3
v2.10.4
v2.10.5
v2.11.0
v2.11.1
v2.11.2
v2.11.3
v2.12.0
v2.13.0
v2.13.1
v2.13.2
v2.14.0
v2.14.1
v2.14.2
v2.14.3
v2.14.4
v2.15.0
v2.15.1
v2.2.0
v2.3.0
v2.3.1
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.5.0
v2.6.0
v2.6.1
v2.7.0
v2.7.1
v2.8.0
v2.9.0
v2.9.1
v2.9.2
v2.9.3