OSV-2026-882
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/htslib/OSV-2026-882.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2026-882
- Published
- 2026-06-08T00:04:58.683884Z
- Modified
- 2026-06-08T14:38:13.969634Z
- Summary
- Null-dereference READ in cram_decoder_init
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=520827587
Crash type: Null-dereference READ Crash state: cram_decoder_init cram_decode_compression_header cram_next_slice - References
Affected packages
OSS-Fuzz / htslib
Package
- Name
- htslib
- Purl
- pkg:generic/htslib
Database specific
introduced_range
"ffa59ef6ed6a09e1d8e2a82a5c69ad85c94b0bad:57e1a0763c9a5f34a1d1ab9deb3a3ad2bd8fe11d"
fixed_range
"57e1a0763c9a5f34a1d1ab9deb3a3ad2bd8fe11d:d94071f3dd9613ab66f177e1237660855a56f0ed"
source
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/htslib/OSV-2026-882.yaml"