OSV-2021-872

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2021-872.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-872
Published
2021-06-18T00:01:21.964353Z
Modified
2022-04-13T03:04:36.226617Z
Summary
Heap-buffer-overflow in ndpi_set_detected_protocol
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35300

Crash type: Heap-buffer-overflow READ 4
Crash state:
ndpi_set_detected_protocol
ndpi_int_http_add_connection
check_content_type_and_change_protocol
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
be808c30f3f4582009df4c5efccd4f3bb0c6ef1d
Fixed
b0b3e1bc6c8db7cf8a2a26dbb29ffdb057d86121
Fixed
0afc8ace3d2da3ff67c13cf3e95f722bdc981170

Ecosystem specific 

{
    "severity": "MEDIUM"
}