CVE-2021-36089

Published July 1st, 2021

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

Grok 7.6.6 through 9.2.0 has a heap-based buffer overflow in grk::FileFormatDecompress::apply_palette_clr (called from grk::FileFormatDecompress::applyColour).

google/oss-fuzz-vulns

OSS-Fuzz vulnerabilities for OSV.

GitHub

180