OSV-2023-500
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ogre/OSV-2023-500.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2023-500
- Published
- 2023-06-20T14:00:54.163811Z
- Modified
- 2023-06-20T14:00:54.164049Z
- Summary
- Heap-buffer-overflow in stbiw__encode_png_line
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42525448
Crash type: Heap-buffer-overflow READ 1 Crash state: stbiw__encode_png_line stbi_write_png_to_mem Ogre::STBIImageCodec::encode - References
Affected packages
OSS-Fuzz / ogre
Package
- Name
- ogre
- Purl
- pkg:generic/ogre
Affected versions
v14.*
v14.0.0
v14.0.1
v14.1.0
v14.1.1
v14.1.2
v14.2.0
v14.2.1
v14.2.2
v14.2.3
v14.2.4
v14.2.5
v14.2.6
v14.3.0
v14.3.1
v14.3.2
v14.3.3
v14.3.4
v14.4.0
v14.4.1
v14.5.0
v14.5.1
v14.5.2
Database specific
fixed_range
"f20f12a8acc88b67bc7c3746b019ecd88c740eb0:ae2fd1771e50989dfdbebec04487e0ff9b2a31b2"
source
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ogre/OSV-2023-500.yaml"
introduced_range
"cd2c73d4cdc2ed3bd8732e11e2e46d8b75f27028:47ab294d87a05f94f0688b16061b997391234b4e"