OSV-2024-539

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/javaparser/OSV-2024-539.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-539

Published

2024-06-07T00:08:30.308579Z

Modified

2024-07-16T14:19:14.406686Z

Summary

Security exception in com.github.javaparser.CommentsInserter.insertComments

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69451

Crash type: Security exception
Crash state:
com.github.javaparser.CommentsInserter.insertComments
java.base/java.util.Objects.equals
com.github.javaparser.Position.equals

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69451

Affected packages

OSS-Fuzz / javaparser

Package

Name: javaparser
Purl: pkg:generic/javaparser

Affected ranges

Type: GIT
Repo: https://github.com/javaparser/javaparser
Events: Introduced

c283f8dec8692fa3792342f0625f59da0855428f

Fixed

e52019b107f6c3a9fa1ed7ab856d45f39a5086dc

Affected versions

javaparser-parent-3.*

javaparser-parent-3.26.0

javaparser-parent-3.26.1

Other

v_snapshot_70ed981

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

introduced_range

"49b47a9391c7480b5abe799a78ae33c5fc3000ed:459a448ef8e8fca593741695720b00029ece1c2e"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/javaparser/OSV-2024-539.yaml"

fixed_range

"4e02850027db2a0dbb2de1aa98662734c7bb9423:e52019b107f6c3a9fa1ed7ab856d45f39a5086dc"