OSV-2020-962

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2020-962.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-962

Published

2020-07-22T00:00:27.303894Z

Modified

2022-04-13T03:04:36.031492Z

Summary

Use-of-uninitialized-value in processCertificateElements

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22864

Crash type: Use-of-uninitialized-value
Crash state:
processCertificateElements
processCertificate
processTLSBlock

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22864

Affected packages

OSS-Fuzz / ndpi

Package

Name: ndpi
Purl: pkg:generic/ndpi

Affected ranges

Type: GIT
Repo: https://github.com/ntop/nDPI.git
Events: Introduced

b2cbe76e716e628438a94d2e112acddb67ec89f2

Fixed

669b7579ff93eb22ccf9324fd19444754b5612b8

Fixed

c793e16050df1de377e400eec6e2b34ccff6ca85

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:b2cbe76e716e628438a94d2e112acddb67ec89f2",
    "fixed_range": "b6eef17e54999586b6aef8f545c87de4d3ec0ab3:669b7579ff93eb22ccf9324fd19444754b5612b8"
}