OSV-2022-675

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/rdkit/OSV-2022-675.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-675

Withdrawn

2024-11-09T10:12:10.155464Z

Published

2022-08-06T00:00:51.363676Z

Modified

2024-10-25T14:09:46.780869Z

Summary

Heap-buffer-overflow in void RDKit::ParseV3000AtomProps<std::__1::vector<std::__1::basic_string_view<cha

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49783

Crash type: Heap-buffer-overflow READ 1
Crash state:
void RDKit::ParseV3000AtomProps&lt;std::__1::vector&lt;std::__1::basic_string_view&lt;cha
RDKit::ParseV3000AtomBlock
RDKit::FileParserUtils::ParseV3000CTAB

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49783

Affected packages

OSS-Fuzz / rdkit

Package

Name: rdkit
Purl: pkg:generic/rdkit

Affected ranges

Type: GIT
Repo: https://github.com/rdkit/rdkit.git
Events: Introduced

fbbddc6035d74f12edde15bf1a93fa70a3fe6fd1

Affected versions

Other

Release_2022_09_1

Release_2022_09_1b1

Release_2022_09_2

Release_2022_09_3

Release_2022_09_4

Release_2022_09_5

Release_2023_03_1

Release_2023_03_1b1

Release_2023_03_2

Release_2023_03_3

Release_2023_09_1

Release_2023_09_1b1

Release_2023_09_2

Release_2023_09_3

Release_2023_09_4

Release_2023_09_5

Release_2023_09_6

Release_2024_03_1

Release_2024_03_1b1

Release_2024_03_2

Release_2024_03_3

Release_2024_03_4

Release_2024_03_5

Release_2024_03_6

Release_2024_09_1

Release_2024_09_1b1

Release_2024_09_2

Ecosystem specific

{
    "severity": "MEDIUM"
}