OSV-2022-667

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/antlr4-java/OSV-2022-667.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-667

Published

2022-08-02T00:01:42.264623Z

Modified

2023-02-24T01:27:48.502253Z

Summary

Uncaught exception in com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49680

Crash type: Uncaught exception
Crash state:
com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal
com.code_intelligence.jazzer.sanitizers.RegexInjection.stringHook
org.antlr.runtime.BaseRecognizer.getTokenErrorDisplay

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49680

Affected packages

OSS-Fuzz / antlr4-java

Package

Name: antlr4-java
Purl: pkg:generic/antlr4-java

Affected ranges

Type: GIT
Repo: https://github.com/antlr/antlr4.git
Events: Introduced

1df58f77820b5feb747d34cc6aff26276db8b6dd

Fixed

14703f21b5802e880da8c3afe80824ab651aee07

Fixed

592ccc4e48db2b862523fd022b954231b8609fe0

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/antlr4-java/OSV-2022-667.yaml"

introduced_range

"f1df3164ca2c2b143b83ff535082ec6f846165c2:14703f21b5802e880da8c3afe80824ab651aee07"