OSV-2024-222

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/cbor-java/OSV-2024-222.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-222
Withdrawn
2024-03-31T07:31:55.465255Z
Published
2024-03-31T00:06:34.772501Z
Modified
2024-03-31T00:06:34.773031Z
Summary
Security exception in co.nstant.in.cbor.CborDecoder.decodeNext
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67637

Crash type: Security exception
Crash state:
co.nstant.in.cbor.CborDecoder.decodeNext
java.base/jdk.internal.misc.Unsafe.putByte
jdk.unsupported/sun.misc.Unsafe.putByte
References

Affected packages

OSS-Fuzz / cbor-java

Package

Name
cbor-java
Purl
pkg:generic/cbor-java

Affected ranges

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

source
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/cbor-java/OSV-2024-222.yaml"