OSV-2023-1222

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2023-1222.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-1222

Published

2023-11-27T13:00:10.105607Z

Modified

2023-11-27T13:00:10.105869Z

Summary

Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64514

Crash type: Security exception
Crash state:
com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
java.base/java.nio.ByteBuffer.position
java.base/sun.nio.cs.UTF_8.updatePositions

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64514

Affected packages

OSS-Fuzz / checkstyle

Package

Name: checkstyle
Purl: pkg:generic/checkstyle

Affected ranges

Type: GIT
Repo: https://github.com/checkstyle/checkstyle
Events: Introduced

55097468aa37d890b0e7b89ac2d27d08c16aee59

Fixed

c3db55ba703327c427291ac09968af7a962b0375

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

{
    "introduced_range": "11e2b4baee11523db5c15602380775e95fb437ba:e4942b9158f910f1089ada94f78e4a94e65d3f23",
    "fixed_range": "22c0361c6efafbce9972ebbe005a36090d1724e6:c3db55ba703327c427291ac09968af7a962b0375"
}