1 results (0.005 seconds)
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1
CVE-2021-36089
https://notcve.org/view.php?id=CVE-2021-36089
Grok 7.6.6 through 9.2.0 has a heap-based buffer overflow in grk::FileFormatDecompress::apply_palette_clr (called from grk::FileFormatDecompress::applyColour). Grok versiones 7.6.6 hasta 9.2.0, presenta un desbordamiento de búfer basado en la región heap de la memoria en la función grk::FileFormatDecompress::apply_palette_clr (llamado desde grk::FileFormatDecompress::applyColour) • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33544 https://github.com/GrokImageCompression/grok/releases https://github.com/google/oss-fuzz-vulns/blob/main/vulns/grok/OSV-2021-677.yaml • CWE-787: Out-of-bounds Write •