OSV-2023-41

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/boringssl/OSV-2023-41.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-41
Published
2023-02-02T13:00:19.898084Z
Modified
2024-05-08T03:26:30Z
Summary
Heap-use-after-free in sk_num
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55556

Crash type: Heap-use-after-free READ 8
Crash state:
sk_num
ASN1_template_free
asn1_item_combine_free
References

Affected packages

OSS-Fuzz / boringssl

Package

Name
boringssl
Purl
pkg:generic/boringssl

Affected ranges

Type
GIT
Repo
https://boringssl.googlesource.com/boringssl
Events
Introduced
33b569282ca124c81d9ba74df696a013cb9a80ae
Fixed
507ac830036d7531489490831814cf03e0d7c4d6

Ecosystem specific 

{
    "severity": "LOW"
}