CVE-2021-3889
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-3889
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3889.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-3889
- Published
- 2021-10-19T13:15:11.977Z
- Modified
- 2025-11-14T12:08:25.386085Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
libmobi is vulnerable to Use of Out-of-range Pointer Offset
- References
Affected packages
Git / github.com/bfabiszewski/libmobi
Affected ranges
- Type
- GIT
- Repo
- https://github.com/bfabiszewski/libmobi
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"source": "https://github.com/bfabiszewski/libmobi/commit/bec783e6212439a335ba6e8df7ab8ed610ca9a21",
"signature_type": "Line",
"target": {
"file": "src/compression.h"
},
"id": "CVE-2021-3889-8e24c8e7",
"digest": {
"line_hashes": [
"60941633953866768929173956639993985641",
"183843454184476539211598106013255501549",
"143765066257043244895911758730691455220",
"147513665195283254971157146680447318182",
"140351231808443371633715668491813990186",
"296309073408020226762114275721447844600",
"127278800796710865628981060257648791801",
"101974956512608900157789862989947945076"
],
"threshold": 0.9
},
"deprecated": false
},
{
"signature_version": "v1",
"source": "https://github.com/bfabiszewski/libmobi/commit/bec783e6212439a335ba6e8df7ab8ed610ca9a21",
"signature_type": "Function",
"target": {
"function": "mobi_decompress_huffman_internal",
"file": "src/compression.c"
},
"id": "CVE-2021-3889-bbe46003",
"digest": {
"length": 1545.0,
"function_hash": "4624666305156171928350655180407704292"
},
"deprecated": false
},
{
"signature_version": "v1",
"source": "https://github.com/bfabiszewski/libmobi/commit/bec783e6212439a335ba6e8df7ab8ed610ca9a21",
"signature_type": "Function",
"target": {
"function": "mobi_parse_huff",
"file": "src/read.c"
},
"id": "CVE-2021-3889-d75cbc27",
"digest": {
"length": 1347.0,
"function_hash": "15982606896711580559032318799110888001"
},
"deprecated": false
},
{
"signature_version": "v1",
"source": "https://github.com/bfabiszewski/libmobi/commit/bec783e6212439a335ba6e8df7ab8ed610ca9a21",
"signature_type": "Line",
"target": {
"file": "src/compression.c"
},
"id": "CVE-2021-3889-f6596980",
"digest": {
"line_hashes": [
"320248425003798492802026060138869397908",
"53738011554090313359502918295970605591",
"80067300861157203983853007628640119367",
"229029659698259163062567162243171267234"
],
"threshold": 0.9
},
"deprecated": false
},
{
"signature_version": "v1",
"source": "https://github.com/bfabiszewski/libmobi/commit/bec783e6212439a335ba6e8df7ab8ed610ca9a21",
"signature_type": "Line",
"target": {
"file": "src/read.c"
},
"id": "CVE-2021-3889-f796c5c2",
"digest": {
"line_hashes": [
"83711654140281194512571502054329484444",
"141291084972431703333183233355891047729",
"217331745260185525010947671041549721309",
"199430023177546943535288491088830199563"
],
"threshold": 0.9
},
"deprecated": false
}
]