OSV-2022-67

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/clamav/OSV-2022-67.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-67
Published
2022-01-21T00:00:45.048694Z
Modified
2022-04-13T03:04:39.425407Z
Summary
Heap-buffer-overflow in cli_bcomp_freemeta
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43816

Crash type: Heap-buffer-overflow READ 8
Crash state:
cli_bcomp_freemeta
cli_bcomp_addpatt
cli_parse_add
References

Affected packages

OSS-Fuzz / clamav

Package

Name
clamav
Purl
pkg:generic/clamav

Affected ranges

Type
GIT
Repo
https://github.com/Cisco-Talos/clamav.git
Events
Introduced
0037f5825b0b17a789c7eb29c9cb9a2d39c452bc
Fixed
618e3b6bcfc2867a713d29a0696d9b87be197ed6

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "9035ef10afc94ef00a130bb3059815986aa0cda5:618e3b6bcfc2867a713d29a0696d9b87be197ed6"
}