osv-2022-1288
Vulnerability from osv_ossfuzz
Published
2024-11-04 00:16
Modified
2026-01-30 14:23
Summary
Stack-buffer-overflow in bool SmilesParseOps::parser::parse_atom_props<std::__1::__wrap_iter<char const*>
Details
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=376787368
Crash type: Stack-buffer-overflow READ 1
Crash state:
bool SmilesParseOps::parser::parse_atom_props<std::__1::__wrap_iter<char const*>
bool SmilesParseOps::parser::parse_it<std::__1::__wrap_iter<char const*> >
SmilesParseOps::parseCXExtensions
{
"affected": [
{
"database_specific": {
"introduced_range": "b603d0d97ed4ecfba9205e449ecff9ed1897e224:3757a1e0fa4757c9ed0b422578538772cc0dab5c"
},
"ecosystem_specific": {
"severity": "MEDIUM"
},
"package": {
"ecosystem": "OSS-Fuzz",
"name": "rdkit",
"purl": "pkg:generic/rdkit"
},
"ranges": [
{
"events": [
{
"introduced": "db15b372a13380693c9ebd33d270c6bddf394883"
}
],
"repo": "https://github.com/rdkit/rdkit.git",
"type": "GIT"
}
],
"versions": [
"Release_2022_03_1",
"Release_2022_03_1b1",
"Release_2022_03_2",
"Release_2022_03_3",
"Release_2022_03_4",
"Release_2022_03_5",
"Release_2022_09_1",
"Release_2022_09_1b1",
"Release_2022_09_2",
"Release_2022_09_3",
"Release_2022_09_4",
"Release_2022_09_5",
"Release_2023_03_1",
"Release_2023_03_1b1",
"Release_2023_03_2",
"Release_2023_03_3",
"Release_2023_09_1",
"Release_2023_09_1b1",
"Release_2023_09_2",
"Release_2023_09_3",
"Release_2023_09_4",
"Release_2023_09_5",
"Release_2023_09_6",
"Release_2024_03_1",
"Release_2024_03_1b1",
"Release_2024_03_2",
"Release_2024_03_3",
"Release_2024_03_4",
"Release_2024_03_5",
"Release_2024_03_6",
"Release_2024_09_1",
"Release_2024_09_1b1",
"Release_2024_09_2",
"Release_2024_09_3",
"Release_2024_09_4",
"Release_2024_09_5",
"Release_2024_09_6",
"Release_2025_03_1b1",
"Release_2025_03_1",
"Release_2025_03_2",
"Release_2025_03_3",
"Release_2025_03_4",
"Release_2025_03_5",
"Release_2025_03_6",
"Release_2025_09_1b1",
"Release_2025_09_1",
"Release_2025_09_2",
"Release_2025_09_3",
"Release_2025_09_4",
"Release_2025_09_5"
]
}
],
"details": "OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=376787368\n\n```\nCrash type: Stack-buffer-overflow READ 1\nCrash state:\nbool SmilesParseOps::parser::parse_atom_props\u003cstd::__1::__wrap_iter\u003cchar const*\u003e\nbool SmilesParseOps::parser::parse_it\u003cstd::__1::__wrap_iter\u003cchar const*\u003e \u003e\nSmilesParseOps::parseCXExtensions\n```\n",
"id": "OSV-2022-1288",
"modified": "2026-01-30T14:23:19.786593Z",
"published": "2024-11-04T00:16:22.516312Z",
"references": [
{
"type": "REPORT",
"url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=376787368"
}
],
"schema_version": "1.6.0",
"summary": "Stack-buffer-overflow in bool SmilesParseOps::parser::parse_atom_props\u003cstd::__1::__wrap_iter\u003cchar const*\u003e"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…