OSV-2023-1382

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2023-1382.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-1382

Published

2024-01-01T00:12:36.633204Z

Modified

2024-01-01T00:12:36.633589Z

Summary

Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65429

Crash type: Security exception
Crash state:
com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
java.base/sun.nio.cs.UTF_8.updatePositions
java.base/sun.nio.cs.UTF_8$Encoder.encodeArrayLoop

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65429

Affected packages

OSS-Fuzz / checkstyle

Package

Name: checkstyle
Purl: pkg:generic/checkstyle

Affected ranges

Type: GIT
Repo: https://github.com/checkstyle/checkstyle
Events: Introduced

9c787dac7c647320d113acb1a42944d29990d7ee

Fixed

13090c515ec207c88f41c8e8646460ff7de76f7f

Affected versions

checkstyle-10.*

checkstyle-10.12.7

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

{
    "introduced_range": "7eac9b6858fd70627746f07cd433371e8f3304d9:d7f97f34021bab6e5027a947eabbcd40300d4567",
    "fixed_range": "86b9a28f763e0e5b5859b581a276bc290078e84a:13090c515ec207c88f41c8e8646460ff7de76f7f"
}