OSV-2022-489

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/freeradius/OSV-2022-489.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-489
Published
2022-06-17T00:00:29.738821Z
Modified
2022-06-17T00:00:29.739073Z
Summary
Heap-buffer-overflow in fr_size_from_str
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48069

Crash type: Heap-buffer-overflow READ 1
Crash state:
fr_size_from_str
fr_value_box_from_substr
fr_value_box_from_str
References

Affected packages

OSS-Fuzz / freeradius

Package

Name
freeradius
Purl
pkg:generic/freeradius

Affected ranges

Type
GIT
Repo
https://github.com/FreeRADIUS/freeradius-server.git
Events
Introduced
cd59058558275715ca46761ae96c652f3cb0a8d8
Fixed
ddfd3a99268136d4c321fa9e2fc38c2d2b8e329d

Ecosystem specific 

{
    "severity": "MEDIUM"
}