OSV-2022-543

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libvpx/OSV-2022-543.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-543
Published
2022-07-08T00:00:44.687010Z
Modified
2022-07-08T00:00:44.687286Z
Summary
Index-out-of-bounds in decode_coefs
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48816

Crash type: Index-out-of-bounds
Crash state:
decode_coefs
vp9_decode_block_tokens
decode_block
References

Affected packages

OSS-Fuzz / libvpx

Package

Name
libvpx
Purl
pkg:generic/libvpx

Affected ranges

Type
GIT
Repo
https://chromium.googlesource.com/webm/libvpx
Events
Introduced
5b530fc962bcb8a51bbf03f5fbc2912f21b86e70
Fixed
933b6b90a583b593efd8acb644603ab189226309

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "introduced_range": "dbac8e01e05ad3d1b47887b1ac864339115aa721:7b65e46983e8aae8024fef562a68aa72d7a111b9"
}