OSV-2024-1034

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/simdutf/OSV-2024-1034.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-1034

Published

2024-08-18T00:08:22.168066Z

Modified

2024-08-18T14:21:16.718581Z

Summary

Heap-buffer-overflow in simdutf::haswell::implementation::convert_utf8_to_utf16be

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71218

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
simdutf::haswell::implementation::convert_utf8_to_utf16be
Conversion<
Conversion<

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71218

Affected packages

OSS-Fuzz / simdutf

Package

Name: simdutf
Purl: pkg:generic/simdutf

Affected ranges

Type: GIT
Repo: https://github.com/simdutf/simdutf
Events: Introduced

dee9177b2b648697fa7df22f84d8b8db77c69606

Fixed

4605fef51a235baf940ea56db71c60e0389fe01e

Fixed

17804069551439ef292c6044920f446e97eb7004

Introduced

e8ce8f25aa5683d37dc44510c99fc776ac9b27cb

Affected versions

v5.*

v5.3.5

v5.3.6

v5.3.7

Ecosystem specific

{
    "severity": "HIGH"
}

Database specific

{
    "introduced_range": "b09ec8f572ac39d613dbf704cac5f6e77a2f0634:29e835f7e33d8c7852ba68a26ab84197e1baff0f",
    "fixed_range": "eddf7e235cd722d73cb9cba82e30e4442f2a6f4e:17804069551439ef292c6044920f446e97eb7004"
}