OSV-2023-606
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/c-blosc2/OSV-2023-606.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2023-606
- Published
- 2023-07-23T14:01:02.159160Z
- Modified
- 2024-11-28T14:20:02.972172Z
- Summary
- Heap-buffer-overflow in ZSTD_decompressMultiFrame
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60778
Crash type: Heap-buffer-overflow READ {*} Crash state: ZSTD_decompressMultiFrame ZSTD_decompress_usingDDict zstd_wrap_decompress - References
Affected packages
OSS-Fuzz / c-blosc2
Package
- Name
- c-blosc2
- Purl
- pkg:generic/c-blosc2
Affected versions
v2.*
v2.0.0
v2.0.0-rc2
v2.0.0.rc1
v2.0.1
v2.0.2
v2.0.3
v2.0.4
v2.1.0
v2.1.1
v2.10.0
v2.10.1
v2.10.2
v2.10.3
v2.10.4
v2.10.5
v2.11.0
v2.11.1
v2.11.2
v2.11.3
v2.12.0
v2.13.0
v2.13.1
v2.13.2
v2.14.0
v2.14.1
v2.14.2
v2.14.3
v2.14.4
v2.15.0
v2.15.1
v2.15.2
v2.2.0
v2.3.0
v2.3.1
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.5.0
v2.6.0
v2.6.1
v2.7.0
v2.7.1
v2.8.0
v2.9.0
v2.9.1
v2.9.2
v2.9.3