OSV-2026-417

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/arrow/OSV-2026-417.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2026-417

Published

2026-03-18T00:18:35.139866Z

Modified

2026-03-18T00:18:35.140154Z

Summary

Segv on unknown address in arrow::Array::IsNull

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=493063924

Crash type: Segv on unknown address
Crash state:
arrow::Array::IsNull
arrow::Status arrow::VisitArrayInline<arrow::ArrayPrinter>
arrow::ArrayPrinter::Print

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=493063924

Affected packages

OSS-Fuzz / arrow

Package

Name: arrow
Purl: pkg:generic/arrow

Affected ranges

Type: GIT
Repo: https://github.com/apache/arrow.git
Events: Introduced

5f12de2ffb4ad7a24c2b9dff0d6aac3f84ef3989

Fixed

92734673d1c9dea033fb30844278d321e82a7874

Ecosystem specific

{
    "severity": null
}

Database specific

fixed_range

"61ef6722b01a289ca6e09d3c5aaef782f060f94c:92734673d1c9dea033fb30844278d321e82a7874"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/arrow/OSV-2026-417.yaml"

introduced_range

"b69ce86617aa696041df4609e8627150eb64cdb0:ca6845248b014db7131ba6dccec5f91b04b4543d"