OSV-2022-763

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/osquery/OSV-2022-763.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-763

Published

2022-08-21T00:00:23.656015Z

Modified

2026-06-25T14:13:57.077823Z

Summary

Heap-buffer-overflow in sqlite3VdbeExec

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50466

Crash type: Heap-buffer-overflow READ {*}
Crash state:
sqlite3VdbeExec
sqlite3_step
osquery::readRows

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50466

Affected packages

OSS-Fuzz / osquery

Package

Name: osquery
Purl: pkg:generic/osquery

Affected ranges

Type: GIT
Repo: https://github.com/osquery/osquery
Events: Introduced

877d5e69ab97e15800b5c5128b3de2cf6f322942

Affected versions

5.*

5.10.0

5.10.1

5.10.2

5.11.0

5.12.0

5.12.1

5.12.2

5.13.0

5.13.1

5.14.0

5.14.1

5.15.0

5.16.0

5.17.0

5.18.0

5.18.1

5.18.1-test

5.19.0

5.20.0

5.21.0

5.22.0

5.22.1

5.23.0

5.37.0

5.38.0

5.5.1

5.6.0

5.7.0

5.8.0

5.8.1

5.8.2

5.9.0

5.9.0.a

5.9.1

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/osquery/OSV-2022-763.yaml"