OSV-2024-25

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/icu/OSV-2024-25.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-25
Published
2024-01-21T00:00:16.253854Z
Modified
2024-04-16T15:30:31.262505Z
Summary
Stack-buffer-overflow in icu_75::PluralRuleParser::parse
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65873

Crash type: Stack-buffer-overflow WRITE 1
Crash state:
icu_75::PluralRuleParser::parse
icu_75::PluralRules::createRules
plurrule_fuzzer.cpp
References

Affected packages

OSS-Fuzz / icu

Package

Name
icu
Purl
pkg:generic/icu

Affected ranges

Type
GIT
Repo
https://github.com/unicode-org/icu.git
Events
Introduced
23dd2b8b5499506a9ff541c9c2f8bf7701cf93b8
Fixed
9832f48e229010e2a5d413eb8d48cacc3cafbdcd

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "7b690aa8c797ca3fead7821200f1b1b10093bcfc:9832f48e229010e2a5d413eb8d48cacc3cafbdcd"
}