OSV-2023-281

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/simdutf/OSV-2023-281.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-281

Published

2023-04-05T14:01:50.220529Z

Modified

2023-04-05T14:01:50.220752Z

Summary

Heap-buffer-overflow in unsigned long simdutf::haswell::convert_masked_utf8_to_utf16<

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57673

Crash type: Heap-buffer-overflow WRITE 16
Crash state:
unsigned long simdutf::haswell::convert_masked_utf8_to_utf16<
simdutf::haswell::implementation::convert_utf8_to_utf16le
roundtrip.cc

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57673

Affected packages

OSS-Fuzz / simdutf

Package

Name: simdutf
Purl: pkg:generic/simdutf

Affected ranges

Type: GIT
Repo: https://github.com/simdutf/simdutf
Events: Introduced

5e7e1f75d35e8c4d5da323ff66d26944e39ed07d

Fixed

03280d7dbe8e91f0ecc06d88fef8adc0fbb41d14

Affected versions

v3.*

v3.2.3

v3.2.4

Ecosystem specific

{
    "severity": "HIGH"
}