-
Notifications
You must be signed in to change notification settings - Fork 39
/
OSV-2018-227.yaml
33 lines (32 loc) · 1.04 KB
/
OSV-2018-227.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
id: OSV-2018-227
summary: Heap-buffer-overflow in rawspeed::TableLookUp::setTable
details: |
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5256
```
Crash type: Heap-buffer-overflow WRITE 2
Crash state:
rawspeed::TableLookUp::setTable
rawspeed::RawImageData::setTable
rawspeed::DngDecoder::handleMetadata
```
modified: '2022-04-13T03:04:36.493923Z'
published: '2021-01-13T00:01:34.025512Z'
references:
- type: REPORT
url: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5256
affected:
- package:
name: librawspeed
ecosystem: OSS-Fuzz
ranges:
- type: GIT
repo: https://github.com/darktable-org/rawspeed.git
events:
- introduced: 23d5018f6b231d62daa6543094a85747beb9654a
- fixed: dbe7591e54bad5e6430d38be6bed051582da76b9
versions:
- v3.1
ecosystem_specific:
fixed_range: 212b7a8ea10acaaf722509e291ed1f59df8010df:dbe7591e54bad5e6430d38be6bed051582da76b9
severity: HIGH
introduced_range: f0e9f60474d98883ab9343f584b73ca046263679:52da2b8fda29aa257088d91fb11877f909d578a2