{"id":"OSV-2021-654","summary":"Heap-buffer-overflow in decode_mcu_fast","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33340\n\n```\nCrash type: Heap-buffer-overflow READ 1\nCrash state:\ndecode_mcu_fast\ndecode_mcu\nconsume_data\n```\n","modified":"2022-04-13T03:04:37.704903Z","published":"2021-04-18T00:01:02.873828Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33340"}],"affected":[{"package":{"name":"libjpeg-turbo","ecosystem":"OSS-Fuzz","purl":"pkg:generic/libjpeg-turbo"},"ranges":[{"type":"GIT","repo":"https://github.com/libjpeg-turbo/libjpeg-turbo","events":[{"introduced":"171b875b272f47f1ae42a5009c64f424db22a95b"},{"fixed":"4de8f6922a9be7d0a51a429e367283fd40031b26"}]}],"ecosystem_specific":{"severity":"HIGH","fixed_range":"d147be83e9a9f904918ba7f834b0fb28e09de9b5:4de8f6922a9be7d0a51a429e367283fd40031b26","introduced_range":"3ab3234875bd58320b1646c086f95511ab67c972:d147be83e9a9f904918ba7f834b0fb28e09de9b5"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libjpeg-turbo/OSV-2021-654.yaml"}}],"schema_version":"1.7.3"}