OSV-2025-534

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2025-534.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2025-534

Published

2025-07-08T00:08:11.218515Z

Modified

2025-07-08T00:08:11.218991Z

Summary

Heap-use-after-free in ih264_inter_pred_luma_horz_ssse3

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=428771938

Crash type: Heap-use-after-free READ 16
Crash state:
ih264_inter_pred_luma_horz_ssse3
ih264d_motion_compensate_mp
isvcd_decode_recon_tfr_nmb_non_base_lyr

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=428771938

Affected packages

OSS-Fuzz / libavc

Package

Name: libavc
Purl: pkg:generic/libavc

Affected ranges

Type: GIT
Repo: https://github.com/ittiam-systems/libavc.git
Events: Introduced

375b9b7e44b067d7b87bcae7291154ae59c72267

Fixed

6f5a49da5db207a149a3f0cc43fd850502017012

Affected versions

v1.*

v1.1.1

v1.2.0

v1.3.0

v1.4.0

v1.5.0

v1.6.0

v1.7.0

v1.7.1

v1.7.2

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

introduced_range

"43629a63d8cb3b52195c032a662e62ac3bfd8aae:b2a61a152a5e83b3419212e8d15a10d4488e51d9"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libavc/OSV-2025-534.yaml"