{"id":"OSV-2022-945","summary":"Heap-buffer-overflow in Exiv2::MemIo::read","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51707\n\n```\nCrash type: Heap-buffer-overflow WRITE {*}\nCrash state:\nExiv2::MemIo::read\nExiv2::BasicIo::readOrThrow\nExiv2::QuickTimeVideo::userDataDecoder\n```\n","modified":"2022-09-24T00:01:09.420915Z","published":"2022-09-24T00:01:09.420683Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51707"}],"affected":[{"package":{"name":"exiv2","ecosystem":"OSS-Fuzz","purl":"pkg:generic/exiv2"},"ranges":[{"type":"GIT","repo":"https://github.com/Exiv2/exiv2","events":[{"introduced":"0a948c6a7d7538e27feef17816406cc5d7769a78"},{"fixed":"0db460c9b0aad040ea1ab0335c3f07d18a0bc4cf"}]}],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/exiv2/OSV-2022-945.yaml"}}],"schema_version":"1.7.3"}