OSV-2023-272

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/simdutf/OSV-2023-272.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-272

Published

2023-04-03T14:00:08.697953Z

Modified

2023-04-04T14:10:41.334668Z

Summary

Heap-buffer-overflow in unsigned long simdutf::haswell::convert_masked_utf8_to_utf16<

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57632

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
unsigned long simdutf::haswell::convert_masked_utf8_to_utf16<
simdutf::haswell::implementation::convert_utf8_to_utf16le
roundtrip.cc

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57632

Affected packages

OSS-Fuzz / simdutf

Package

Name: simdutf
Purl: pkg:generic/simdutf

Affected ranges

Type: GIT
Repo: https://github.com/simdutf/simdutf
Events: Introduced

5e7e1f75d35e8c4d5da323ff66d26944e39ed07d

Fixed

72af817153515c8715417794e7b0d7b91eb1be12

Affected versions

v3.*

v3.2.3

Ecosystem specific

{
    "severity": "HIGH"
}