{"id":"OSV-2025-266","summary":"Heap-buffer-overflow in lj_buf_ruleb128","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=408513931\n\n```\nCrash type: Heap-buffer-overflow READ 1\nCrash state:\nlj_buf_ruleb128\nlj_bcread\ncpparser\n```\n","modified":"2026-06-30T14:50:00.447090Z","published":"2025-04-08T00:17:06.279554Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=408513931"}],"affected":[{"package":{"name":"tarantool","ecosystem":"OSS-Fuzz","purl":"pkg:generic/tarantool"},"ranges":[{"type":"GIT","repo":"https://github.com/tarantool/tarantool","events":[{"introduced":"8ad443de995a7800906718925ce6c9162d80c4a9"}]}],"versions":["3.4.0","3.4.1-entrypoint","3.5.0-entrypoint","3.4.1","3.4.2-entrypoint","3.5.0","3.5.1-entrypoint","3.6.0-entrypoint","3.4.2","3.4.3-entrypoint","3.5.1","3.5.2-entrypoint","3.6.0","3.6.1-entrypoint","3.7.0-entrypoint","3.6.1","3.6.2-entrypoint","3.6.2","3.6.3-entrypoint","3.7.0","3.7.1-entrypoint","3.8.0-entrypoint","3.5.2","3.6.3","3.6.4-entrypoint","3.5.3-entrypoint"],"ecosystem_specific":{"severity":"MEDIUM"},"database_specific":{"introduced_range":"f40901fbc98e46e0f4c276cbb51ffaf1abbbfebb:43aa0bf45ef18f76b312fabf3d3842d81a970bae","source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/tarantool/OSV-2025-266.yaml"}}],"schema_version":"1.7.5"}