OSV-2024-33

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/gpac/OSV-2024-33.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-33
Published
2024-01-24T00:05:37.532325Z
Modified
2024-04-18T14:26:43.225909Z
Summary
Heap-buffer-overflow in ctxload_probe_data
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66032

Crash type: Heap-buffer-overflow READ {*}
Crash state:
ctxload_probe_data
gf_filter_pid_raw_new
filein_process
References

Affected packages

OSS-Fuzz / gpac

Package

Name
gpac
Purl
pkg:generic/gpac

Affected ranges

Type
GIT
Repo
https://github.com/gpac/gpac
Events
Introduced
3ce00a25e6ef31489ed6a74b00e465f1bde52e98
Introduced
714810a4e158adf0c4a207637720ac08600adf41
Fixed
5bc64556b45beb8c48e2e40e419beb335fa468c7

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "c9aba42fa2b8bc96dbba22de337a37ccc2f597dd:5bc64556b45beb8c48e2e40e419beb335fa468c7"
}