{"id":"OSV-2026-136","summary":"Memcpy-param-overlap in grk::memStreamRead","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=478035120\n\n```\nCrash type: Memcpy-param-overlap\nCrash state:\ngrk::memStreamRead\ngrk::BufferedStream::read\ngrk::MarkerParser::readSOTorEOC\n```\n","modified":"2026-01-25T00:10:48.353140Z","published":"2026-01-25T00:10:48.352834Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=478035120"}],"affected":[{"package":{"name":"grok","ecosystem":"OSS-Fuzz","purl":"pkg:generic/grok"},"ranges":[{"type":"GIT","repo":"https://github.com/GrokImageCompression/grok.git","events":[{"introduced":"5cc1466819c54e0f8879b2163c43ee764d1c400a"},{"fixed":"eb702655bb0e5fc39ea037a08ca26c73bf5cde01"}]}],"ecosystem_specific":{"severity":"MEDIUM"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/grok/OSV-2026-136.yaml","introduced_range":"3ff9df05501b96d1f0cede0e51f23a2417061ecb:ddb7b4704c9c00df168eaa97749cf3efaefddf4c","fixed_range":"45394e53de1103180d6f79c997f9cc5df25eecb1:eb702655bb0e5fc39ea037a08ca26c73bf5cde01"}}],"schema_version":"1.7.3"}