OSV-2022-490

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/spirv-tools/OSV-2022-490.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-490
Published
2022-06-17T00:01:02.205743Z
Modified
2022-06-17T00:01:02.206010Z
Summary
Stack-buffer-overflow in spvtools::opt::CompositeInsertToCompositeConstruct
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48060

Crash type: Stack-buffer-overflow READ 4
Crash state:
spvtools::opt::CompositeInsertToCompositeConstruct
std::__1::__function::__func<bool
spvtools::opt::InstructionFolder::FoldInstructionInternal
References

Affected packages

OSS-Fuzz / spirv-tools

Package

Name
spirv-tools
Purl
pkg:generic/spirv-tools

Affected ranges

Type
GIT
Repo
https://github.com/KhronosGroup/SPIRV-Tools.git
Events

Affected versions

sdk-1.*

sdk-1.3.216.0

Ecosystem specific

{
    "severity": "MEDIUM"
}