OSV-2026-650

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2026-650

Published

2026-04-29T00:19:17.230021Z

Modified

2026-04-29T14:32:22.076704Z

Summary

Use-of-uninitialized-value in Mat_int32Swap

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=506942183

Crash type: Use-of-uninitialized-value
Crash state:
Mat_int32Swap
ReadCompressedInt32Data
Mat_VarRead5

References

Affected packages

Type: GIT
Repo: https://github.com/tbeu/matio.git
Events: Introduced

95ef616e596c15a72abed28ab0b3f6b72bd6e691

Fixed

a3e837350f28232a3a16e901d989049b6866a0bc

Fixed

2f89a7e9ebe198f16b62048dd02cd6de5dc47573

v1.*

v1.5.30

{
    "severity": "MEDIUM"
}

fixed_range

"5df1d83e0f81b8e82073d34302c7714ea3a8eeb0:2f89a7e9ebe198f16b62048dd02cd6de5dc47573"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/matio/OSV-2026-650.yaml"