OSV-2025-264

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/joni/OSV-2025-264.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-264
Published
2025-04-08T00:00:08.174777Z
Modified
2025-04-08T00:00:08.175341Z
Summary
Security exception in org.joni.Parser.parseCharClass
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=408254044

Crash type: Security exception
Crash state:
org.joni.Parser.parseCharClass
org.joni.Lexer.fetchTokenInCC
org.joni.Parser.parseCharClass
References

Affected packages

OSS-Fuzz / joni

Package

Name
joni
Purl
pkg:generic/joni

Affected ranges

Type
GIT
Repo
https://github.com/jruby/joni
Events
Introduced
6a0d556f7c24d77b0735e3d4fcfc2e3207174b4d
Fixed
65b181b42b8d3737ecf55be0d84f3bf46e76b129

Affected versions

joni-2.*

joni-2.2.2
joni-2.2.3
joni-2.2.4
joni-2.2.5
joni-2.2.6

Ecosystem specific 

{
    "severity": "LOW"
}

Database specific 

{
    "introduced_range": "unknown:6a0d556f7c24d77b0735e3d4fcfc2e3207174b4d"
}