OSV-2020-194

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2020-194.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-194
Published
2020-06-24T01:51:18.363782Z
Modified
2022-04-13T03:04:36.020083Z
Summary
Heap-buffer-overflow in check_ymsg
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20856

Crash type: Heap-buffer-overflow READ 4
Crash state:
check_ymsg
ndpi_search_yahoo_tcp
ndpi_search_yahoo
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
7234f369499e02f44efcbbf0efe43bae596ddc53
Fixed
c6acf97bfbe5ad26db3c2f5dd4d379ac674d6fb3

Affected versions

3.*

3.2

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "2efc09a20e6503d99fe3d76fcc16b1892fb7c7ff:5c52c00ea4ad8afaebd5259bc53215a1ab41569f"
}