OSV-2023-581

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/clamav/OSV-2023-581.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-581

Published

2023-07-18T14:00:33.759863Z

Modified

2023-07-18T14:00:33.760126Z

Summary

Heap-buffer-overflow in wwunpack

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60655

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
wwunpack
cli_scanpe
cli_magic_scan

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60655

Affected packages

OSS-Fuzz / clamav

Package

Name: clamav
Purl: pkg:generic/clamav

Affected ranges

Type: GIT
Repo: https://github.com/Cisco-Talos/clamav.git
Events: Introduced

89cd0df3d7d4c2163d79056b5c0ec55c4992c8f4

Fixed

cec59d79c94ee4ec579764d0a6e934e67e11cc94

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

{
    "introduced_range": "ca6b9beea23b980bbc482bb537f6e0403f43b292:b778a6b12e5592d57ba9f0f11e85b4c5a281540b",
    "fixed_range": "93c769778f1a7d45fae3873f531e62701a15ac95:cec59d79c94ee4ec579764d0a6e934e67e11cc94"
}