OSV-2020-2206

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-2206

Published

2020-11-29T00:00:04.133863Z

Modified

2022-04-13T03:04:36.047885Z

Summary

Segv on unknown address in ndpi_free

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27988

Crash type: Segv on unknown address
Crash state:
ndpi_free
ndpi_free_flow
fuzz_process_packet.c

References

Affected packages

Type: GIT
Repo: https://github.com/ntop/nDPI.git
Events: Introduced

7a1147d733dc2a43c375207747e8c4587af83388

Fixed

0fceb6576aeb76b78ad9c19c86830fba694cfd5d

3.4

{
    "severity": "HIGH"
}