OSV-2023-1378

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2023-1378.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1378
Published
2023-12-31T00:13:35.510537Z
Modified
2024-04-25T14:13:38.925666Z
Summary
Heap-buffer-overflow in ih264d_get_bits_h264
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65418

Crash type: Heap-buffer-overflow READ 4
Crash state:
ih264d_get_bits_h264
ih264d_parse_fgc
ih264d_parse_sei_payload
References

Affected packages

OSS-Fuzz / libavc

Package

Name
libavc
Purl
pkg:generic/libavc

Affected ranges

Type
GIT
Repo
https://github.com/ittiam-systems/libavc.git
Events
Introduced
37beb9729249a1cde472545e2a19d80660e40edc
Fixed
a20a5df162992908b166644f4d5b7dad96b4cdfd

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "28727baf58aa7c8983769aff1ceecb3121a26ee6:a20a5df162992908b166644f4d5b7dad96b4cdfd"
}