OSV-2023-1173

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ruby/OSV-2023-1173.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1173
Published
2023-11-17T13:00:49.902117Z
Modified
2023-11-17T13:00:49.902383Z
Summary
Heap-buffer-overflow in fill_lines
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64218

Crash type: Heap-buffer-overflow READ 1
Crash state:
fill_lines
rb_dump_backtrace_with_lines
rb_vm_bugreport
References

Affected packages

OSS-Fuzz / ruby

Package

Name
ruby
Purl
pkg:generic/ruby

Affected ranges

Type
GIT
Repo
https://github.com/ruby/ruby.git
Events
Introduced
bbfd735b887de71de48c7f862e6e3842bcc03241
Fixed
f5c3cda7d6e9053ae5ed66e36d13e568595ff1ec

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "701b0650de8a5b1436ce1abc65e0fcc2be480c2d:f5c3cda7d6e9053ae5ed66e36d13e568595ff1ec"
}