{"id":"OSV-2023-769","summary":"Index-out-of-bounds in derive_spatial_luma_vector_prediction","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61844\n\n```\nCrash type: Index-out-of-bounds\nCrash state:\nderive_spatial_luma_vector_prediction\nfill_luma_motion_vector_predictors\nmotion_vectors_and_ref_indices\n```\n","modified":"2023-08-30T14:01:19.139963Z","published":"2023-08-30T14:01:19.139702Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61844"}],"affected":[{"package":{"name":"kimageformats","ecosystem":"OSS-Fuzz","purl":"pkg:generic/kimageformats"},"ranges":[{"type":"GIT","repo":"https://invent.kde.org/frameworks/kimageformats.git","events":[{"introduced":"ca52d4ddf540cc731d0f31dbccc1897f7e6d9db4"},{"fixed":"f6bb59228e8e8ad09915c46aec83954384b4f6aa"}]}],"versions":["v5.100.0-rc1","v5.101.0","v5.101.0-rc1","v5.102.0","v5.102.0-rc1","v5.103.0","v5.103.0-rc1","v5.104.0","v5.104.0-rc1","v5.105.0","v5.105.0-rc1","v5.106.0","v5.106.0-rc1","v5.107.0","v5.107.0-rc1","v5.108.0","v5.108.0-rc1","v5.109.0","v5.109.0-rc1","v5.110.0","v5.110.0-rc1","v5.80.0","v5.80.0-rc1","v5.81.0","v5.81.0-rc1","v5.81.0-rc2","v5.82.0-rc1","v5.83.0","v5.83.0-rc1","v5.84.0-rc1","v5.85.0","v5.85.0-rc1","v5.86.0","v5.86.0-rc1","v5.87.0","v5.87.0-rc1","v5.88.0","v5.88.0-rc1","v5.89.0","v5.89.0-rc1","v5.90.0","v5.90.0-rc1","v5.91.0","v5.91.0-rc1","v5.92.0","v5.92.0-rc1","v5.93.0","v5.93.0-rc1","v5.94.0","v5.94.0-rc1","v5.95.0","v5.95.0-rc1","v5.96.0","v5.96.0-rc1","v5.97.0","v5.97.0-rc1","v5.98.0","v5.98.0-rc1","v5.99.0","v5.99.0-rc1"],"ecosystem_specific":{"severity":"MEDIUM"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kimageformats/OSV-2023-769.yaml"}}],"schema_version":"1.7.3"}