OSV-2023-1207

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2023-1207.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1207
Published
2023-11-24T13:00:50.874577Z
Modified
2023-11-24T13:00:50.874889Z
Summary
Heap-buffer-overflow in isvcd_start_of_pic
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64436

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
isvcd_start_of_pic
isvcd_parse_decode_slice
isvcd_parse_nal_unit
References

Affected packages

OSS-Fuzz / libavc

Package

Name
libavc
Purl
pkg:generic/libavc

Affected ranges

Type
GIT
Repo
https://github.com/ittiam-systems/libavc.git
Events
Introduced
b2a61a152a5e83b3419212e8d15a10d4488e51d9
Fixed
e49a9150a3b1cfc3fb9097ca02dd042e35226129

Affected versions

v1.*

v1.1.1
v1.2.0
v1.3.0

Ecosystem specific 

{
    "severity": "HIGH"
}