OSV-2023-870

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/icu/OSV-2023-870.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-870
Published
2023-09-17T14:01:25.114159Z
Modified
2023-09-17T14:01:25.114447Z
Summary
Heap-buffer-overflow in icu_74::SimpleDateFormat::subFormat
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62432

Crash type: Heap-buffer-overflow READ 4
Crash state:
icu_74::SimpleDateFormat::subFormat
icu_74::SimpleDateFormat::_format
icu_74::SimpleDateFormat::format
References

Affected packages

OSS-Fuzz / icu

Package

Name
icu
Purl
pkg:generic/icu

Affected ranges

Type
GIT
Repo
https://github.com/unicode-org/icu.git
Events
Introduced
d082de574ff13873123c55212ad20cf258ffb283
Fixed
990779c4bf935d2741ef6514f4d070231c388d05

Ecosystem specific 

{
    "severity": "MEDIUM"
}