OSV-2024-955

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2024-955.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-955

Published

2024-08-16T00:13:46.718533Z

Modified

2024-08-16T00:13:46.718830Z

Summary

Use-of-uninitialized-value in pcpp::IPv6Address::toString

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42536479

Crash type: Use-of-uninitialized-value
Crash state:
pcpp::IPv6Address::toString
pcpp::NDPNeighborSolicitationLayer::toString
pcpp::Packet::toStringList

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42536479

Affected packages

OSS-Fuzz / pcapplusplus

Package

Name: pcapplusplus
Purl: pkg:generic/pcapplusplus

Affected ranges

Type: GIT
Repo: https://github.com/seladb/PcapPlusPlus
Events: Introduced

813f15b87f5e76a62d64360f8cbdf449c21316e4

Fixed

08d661c4385a9e1e1bea68afc88ccad60718f638

Affected versions

v24.*

v24.09

v25.*

v25.05

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

introduced_range

"3227ad11ec457c3dad062db548432d2a1c837d50:0c95dfb3557644acc6a10060e48cfae1a61fc2f0"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2024-955.yaml"