OSV-2024-86

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/threetenbp/OSV-2024-86.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-86
Published
2024-02-09T00:00:11.154046Z
Modified
2024-09-17T14:18:45.288933Z
Summary
Security exception in org.threeten.bp.format.DateTimeFormatterBuilder$CompositePrinterParser.parse
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66533

Crash type: Security exception
Crash state:
org.threeten.bp.format.DateTimeFormatterBuilder$CompositePrinterParser.parse
java.base/java.text.DateFormatSymbols.getProviderInstance
java.base/java.text.DateFormatSymbols.getInstance
References

Affected packages

OSS-Fuzz / threetenbp

Package

Name
threetenbp
Purl
pkg:generic/threetenbp

Affected ranges

Type
GIT
Repo
https://github.com/ThreeTen/threetenbp
Events
Introduced
bdf97bf72f4e5af7ae3c3af1ea8e3407c1451341

Affected versions

Other

tzdb2

v1.*

v1.6.9
v1.7.0

Ecosystem specific 

{
    "severity": "LOW"
}