OSV-2023-319
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2023-319.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2023-319
- Published
- 2023-04-16T14:01:58.406534Z
- Modified
- 2026-06-24T14:14:53.361909Z
- Summary
- Heap-buffer-overflow in ZSTD_decompressSequencesLong_bmi2
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58035
Crash type: Heap-buffer-overflow READ 8 Crash state: ZSTD_decompressSequencesLong_bmi2 ZSTD_decompressSequencesLong ZSTD_decompressBlock_internal - References
Affected packages
OSS-Fuzz / c-blosc2
Package
- Name
- c-blosc2
- Purl
- pkg:generic/c-blosc2
Affected versions
v2.*
v2.0.0
v2.0.0-rc2
v2.0.0.rc1
v2.0.1
v2.0.2
v2.0.3
v2.0.4
v2.1.0
v2.1.1
v2.10.0
v2.10.1
v2.10.2
v2.10.3
v2.10.4
v2.10.5
v2.11.0
v2.11.1
v2.11.2
v2.11.3
v2.12.0
v2.13.0
v2.13.1
v2.13.2
v2.14.0
v2.14.1
v2.14.2
v2.14.3
v2.14.4
v2.15.0
v2.15.1
v2.15.2
v2.16.0
v2.17.0
v2.17.1
v2.18.0
v2.19.0
v2.19.1
v2.2.0
v2.20.0
v2.21.0
v2.21.1
v2.21.2
v2.21.3
v2.22.0
v2.23.0
v2.23.1
v2.3.0
v2.3.1
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.5.0
v2.6.0
v2.6.1
v2.7.0
v2.7.1
v2.8.0
v2.9.0
v2.9.1
v2.9.2
v2.9.3
v3.*
v3.0.0
v3.0.0.rc1
v3.0.0.rc2
v3.0.1
v3.0.2
v3.0.3
v3.1.0
v3.1.1
v3.1.2
v3.1.3
v3.1.4