OSV-2024-343

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2024-343.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-343

Published

2024-04-30T00:02:38.268026Z

Modified

2025-01-13T14:51:10.266632Z

Summary

Heap-buffer-overflow in pcpp::BgpUpdateMessageLayer::setPathAttributes

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67971

Crash type: Heap-buffer-overflow READ 2
Crash state:
pcpp::BgpUpdateMessageLayer::setPathAttributes
pcpp::BgpUpdateMessageLayer::clearPathAttributes
readParsedPacket

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67971

Affected packages

OSS-Fuzz / pcapplusplus

Package

Name: pcapplusplus
Purl: pkg:generic/pcapplusplus

Affected ranges

Type: GIT
Repo: https://github.com/seladb/PcapPlusPlus
Events: Introduced

5f1895a7b496fa78a2927bd5fe610ab619a3f49b

Fixed

bc5c08d3df37e9d725656c345d3991ab0c982717

Affected versions

v24.*

v24.09

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

fixed_range

"ab755348711dfb94fa0780c5aa71a8e6e614d132:bc5c08d3df37e9d725656c345d3991ab0c982717"

introduced_range

"762c7fd488d0bc6ce81d105fcb4f07ba2c9e6bc4:f112d0adcae6b75531894b3c1cb29f97bfdad171"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2024-343.yaml"