OSV-2024-1351

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/unrar/OSV-2024-1351.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-1351
Published
2024-12-10T00:05:42.992615Z
Modified
2024-12-10T00:05:42.992960Z
Summary
Use-of-uninitialized-value in Archive::UnexpEndArcMsg
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=382526743

Crash type: Use-of-uninitialized-value
Crash state:
Archive::UnexpEndArcMsg
Archive::ReadHeader50
Archive::ReadHeader
References

Affected packages

OSS-Fuzz / unrar

Package

Name
unrar
Purl
pkg:generic/unrar

Affected ranges

Type
GIT
Repo
https://github.com/aawc/unrar.git
Events
Introduced
7f22bab6a957363b2002d0d6c964bfd49afe5f45
Fixed
a4ae80fa158d9f9fd5f745125288e301c2abf9fc

Affected versions

v7.*
v7.10.2

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/unrar/OSV-2024-1351.yaml"