OSV-2023-1205

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2023-1205.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1205
Published
2023-11-24T13:00:14.783667Z
Modified
2024-04-29T11:21:55.556489Z
Summary
Heap-buffer-overflow in isvcd_populate_res_prms
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64431

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
isvcd_populate_res_prms
isvcd_parse_interlayer_resamp_func_init
isvcd_mark_err_slice_skip
References

Affected packages

OSS-Fuzz / libavc

Package

Name
libavc
Purl
pkg:generic/libavc

Affected ranges

Type
GIT
Repo
https://github.com/ittiam-systems/libavc.git
Events
Introduced
b2a61a152a5e83b3419212e8d15a10d4488e51d9
Fixed
28727baf58aa7c8983769aff1ceecb3121a26ee6

Affected versions

v1.*

v1.1.1
v1.2.0
v1.3.0

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "0d29250b990430ca0d7346459c11ca053380bbb5:28727baf58aa7c8983769aff1ceecb3121a26ee6"
}