OSV-2022-667

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/antlr4-java/OSV-2022-667.yaml
Published
2022-08-02T00:01:42.264623Z
Modified
2022-08-02T00:01:42.264866Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49680

Crash type: Uncaught exception
Crash state:
com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal
com.code_intelligence.jazzer.sanitizers.RegexInjection.stringHook
org.antlr.runtime.BaseRecognizer.getTokenErrorDisplay
References

Affected packages

OSS-Fuzz / antlr4-java

antlr4-java

Affected ranges

Type
GIT
Events
Introduced
1df58f77820b5feb747d34cc6aff26276db8b6dd
Fixed
14703f21b5802e880da8c3afe80824ab651aee07

Affected versions

Ecosystem specific 

{
    "severity": "LOW"
}

Database specific 

{
    "introduced_range": "f1df3164ca2c2b143b83ff535082ec6f846165c2:14703f21b5802e880da8c3afe80824ab651aee07"
}