OSV-2024-679

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kimageformats/OSV-2024-679.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-679
Published
2024-07-25T00:14:34.485446Z
Modified
2024-12-13T14:24:51.794418Z
Summary
Heap-buffer-overflow in readImage4v2
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70554

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
readImage4v2
PCXHandler::read
kimgio_fuzzer.cc
References

Affected packages

OSS-Fuzz / kimageformats

Package

Name
kimageformats
Purl
pkg:generic/kimageformats

Affected ranges

Type
GIT
Repo
https://invent.kde.org/frameworks/kimageformats.git
Events
Introduced
3590a43fc506afca40a20b09fb6e8007b6dcf5b8

Affected versions

v6.*

v6.5.0
v6.5.0-rc1
v6.6.0
v6.6.0-rc1
v6.7.0
v6.7.0-rc1
v6.8.0
v6.8.0-rc1
v6.9.0
v6.9.0-rc1

Ecosystem specific 

{
    "severity": "HIGH"
}