OSV-2020-1082

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2020-1082.yaml

Published

2020-07-22T21:49:45.834056Z

Modified

2022-04-13T03:04:36.167492Z

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21296

Crash type: Use-of-uninitialized-value
Crash state:
processClientServerHello
processTLSBlock
ndpi_search_tls_tcp

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21296

Affected packages

OSS-Fuzz / ndpi

Package

Name: ndpi

Affected ranges

Type: GIT
Repo: https://github.com/ntop/nDPI.git
Events: Introduced

b2cbe76e716e628438a94d2e112acddb67ec89f2

Fixed

a845e997209b987ef85a2562697d4d0522cb0c66

Fixed

2aec630202bf976e8ee978922441a414d4176cb8

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:b2cbe76e716e628438a94d2e112acddb67ec89f2",
    "fixed_range": "b2cbe76e716e628438a94d2e112acddb67ec89f2:a845e997209b987ef85a2562697d4d0522cb0c66"
}