OSV-2024-89

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2024-89.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-89

Published

2024-02-09T00:03:08.288815Z

Modified

2024-04-01T14:22:58.864850Z

Summary

Security exception in com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66429

Crash type: Security exception
Crash state:
com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst
java.base/java.util.stream.ReferencePipeline$3$1.accept
java.base/java.util.ArrayList$ArrayListSpliterator.forEachRemaining

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66429

Affected packages

OSS-Fuzz / checkstyle

Package

Name: checkstyle
Purl: pkg:generic/checkstyle

Affected ranges

Type: GIT
Repo: https://github.com/checkstyle/checkstyle
Events: Introduced

82fd7aac913d239efa69529bb638f7d6fbd7e1be

Fixed

77b76ede17fb314d75db0f0e4ee0b86f2236daee

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

{
    "introduced_range": "84104c4c7e3d0a08b05e0a3edddb08489b7b37cc:8d5daa51a7e9e9b294f549eaace22614b944bea6",
    "fixed_range": "00769882831961af98ce009d82b435b118b7ca61:77b76ede17fb314d75db0f0e4ee0b86f2236daee"
}