OSV-2024-39

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/simdutf/OSV-2024-39.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-39
Published
2024-01-25T00:05:37.689031Z
Modified
2024-04-29T11:31:05.900312Z
Summary
Heap-buffer-overflow in simdutf::westmere::implementation::convert_utf8_to_utf32
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66063

Crash type: Heap-buffer-overflow WRITE 16
Crash state:
simdutf::westmere::implementation::convert_utf8_to_utf32
roundtrip.cc
References

Affected packages

OSS-Fuzz / simdutf

Package

Name
simdutf
Purl
pkg:generic/simdutf

Affected ranges

Type
GIT
Repo
https://github.com/simdutf/simdutf
Events
Introduced
59b81c798c0c88ca4c573ebde77c3b38eb0352cb
Fixed
c708a9e4c1dc880241c252bec76fada53ab84da3

Affected versions

v4.*
v4.0.4
v4.0.5
v4.0.6
v4.0.7
v4.0.8

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific

fixed_range 
"9504bf8e7a6aa0a752173a3e83084b31af1a39bb:c708a9e4c1dc880241c252bec76fada53ab84da3"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/simdutf/OSV-2024-39.yaml"