OSV-2025-901

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/arrow/OSV-2025-901.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2025-901

Published

2025-11-17T00:02:08.125421Z

Modified

2025-11-17T00:02:08.125970Z

Summary

Heap-use-after-free in apache::thrift::protocol::TCompactProtocolT<apache::thrift::transport::TMemoryBu

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=461058054

Crash type: Heap-use-after-free READ 1
Crash state:
apache::thrift::protocol::TCompactProtocolT&lt;apache::thrift::transport::TMemoryBu
unsigned int parquet::format::OffsetIndex::read&lt;apache::thrift::protocol::TCompa
void parquet::ThriftDeserializer::DeserializeUnencryptedMessage&lt;parquet::format:

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=461058054

Affected packages

OSS-Fuzz / arrow

Package

Name: arrow
Purl: pkg:generic/arrow

Affected ranges

Type: GIT
Repo: https://github.com/apache/arrow.git
Events: Introduced

a0aa749eba97c63e4c8e1c689069d1ac3a70dfe2

Fixed

83a5a61970a70d5b8fd0913341b3331be141da56

Fixed

98620f54a742d06e799aca02622cdbc67e4cc916

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

fixed_range

"303d077720f17713a191d53e25a88046645fa3a4:98620f54a742d06e799aca02622cdbc67e4cc916"

introduced_range

"5112de23222dda6fa449f0488265ee0679fd227b:934554d6e72146d854341ce61e6d1197b6695794"