OSV-2024-1237

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcre2/OSV-2024-1237.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-1237

Published

2024-10-22T00:13:19.495791Z

Modified

2024-10-22T00:13:19.496460Z

Summary

Use-of-uninitialized-value in jit_compile

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=374218978

Crash type: Use-of-uninitialized-value
Crash state:
jit_compile
pcre2_jit_compile_8
pcre2_fuzzsupport.c

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=374218978

Affected packages

OSS-Fuzz / pcre2

Package

Name: pcre2
Purl: pkg:generic/pcre2

Affected ranges

Type: GIT
Repo: https://github.com/PCRE2Project/pcre2
Events: Introduced

1e09555d6950bfcf83bd98fa597b0c6440d43c9c

Fixed

ccb259f089a8a54c06ce7b17d9cbac4302652bb1

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

{
    "introduced_range": "03be4d2d7f8dda6871da7af591e6d0b02e41f4f4:182461aba17fb2a8e56b2c515e67210cd3ea5221",
    "fixed_range": "fc38d9e784f6d7db070b78d062f1b3de034965b2:ccb259f089a8a54c06ce7b17d9cbac4302652bb1"
}