OSV-2023-776

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2023-776.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-776
Published
2023-08-31T14:01:17.285452Z
Modified
2023-08-31T14:01:17.285839Z
Summary
Heap-buffer-overflow in ndpi_domain_classify_contains
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61882

Crash type: Heap-buffer-overflow READ 2
Crash state:
ndpi_domain_classify_contains
ndpi_get_custom_category_match
ndpi_match_host_subprotocol
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
36abf06c6f59b66bde48e7b3028b4823ecc6ed85
Fixed
19381f330ae735d361d9e765148be5e14478256d

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2023-776.yaml"