OSV-2023-1004

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2023-1004.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1004
Published
2023-10-12T13:00:14.575456Z
Modified
2023-10-12T13:00:14.575776Z
Summary
Heap-buffer-overflow in ndpi_snprintf
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63179

Crash type: Heap-buffer-overflow WRITE 11
Crash state:
ndpi_snprintf
ndpi_serialize_string_int32
fuzz_serialization.cpp
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
a76b9d151f58e000980abffc29b0192b08c5bb4e
Fixed
30fc89e556e5c09bf62b9548862cc3d924b9ec81

Ecosystem specific 

{
    "severity": "HIGH"
}