OSV-2024-637

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2024-637.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-637
Published
2024-07-13T00:08:20.097992Z
Modified
2024-07-16T14:17:43.815608Z
Summary
Heap-buffer-overflow in ih264d_format_convert
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69682

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
ih264d_format_convert
isvcd_video_decode
isvcd_api_function
References

Affected packages

OSS-Fuzz / libavc

Package

Name
libavc
Purl
pkg:generic/libavc

Affected ranges

Type
GIT
Repo
https://github.com/ittiam-systems/libavc.git
Events

Affected versions

v1.*

v1.1.1
v1.2.0
v1.3.0
v1.4.0

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

{
    "introduced_range": "43629a63d8cb3b52195c032a662e62ac3bfd8aae:b2a61a152a5e83b3419212e8d15a10d4488e51d9",
    "fixed_range": "72315c11ac595a73d3b629cc36647327156d5875:b0117e32b9555e7069c2aef571d921bff22f502f"
}