OSV-2023-1354

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2023-1354.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1354
Published
2023-12-25T00:03:08.530303Z
Modified
2023-12-25T00:03:08.530510Z
Summary
Heap-buffer-overflow in processClientServerHello
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65304

Crash type: Heap-buffer-overflow READ 2
Crash state:
processClientServerHello
processTLSBlock
ndpi_search_tls_udp
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
cbea1b2203647e3ee819d8d1d93411e8a8f9e116
Fixed
f2be9722242880fb9bff3be31d59dae6a25a8690

Ecosystem specific 

{
    "severity": "MEDIUM"
}