OSV-2025-290

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2025-290.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-290
Published
2025-04-19T00:05:45.140280Z
Modified
2025-09-25T14:31:44.695948Z
Summary
Heap-buffer-overflow in pcpp::TelnetLayer::toString
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=411460531

Crash type: Heap-buffer-overflow READ 1
Crash state:
pcpp::TelnetLayer::toString
pcpp::Packet::toStringList
pcpp::Packet::toString
References

Affected packages

OSS-Fuzz / pcapplusplus

Package

Name
pcapplusplus
Purl
pkg:generic/pcapplusplus

Affected ranges

Type
GIT
Repo
https://github.com/seladb/PcapPlusPlus
Events
Introduced
813f15b87f5e76a62d64360f8cbdf449c21316e4
Fixed
3a6914158b3ec1527cfef393e6c3b68d2d48d8fc

Affected versions

v24.*
v24.09
v25.*
v25.05

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

introduced_range 
"3227ad11ec457c3dad062db548432d2a1c837d50:0c95dfb3557644acc6a10060e48cfae1a61fc2f0"
fixed_range 
"06a10a494939a112c36cf4f6a32c13e4edba8b74:3a6914158b3ec1527cfef393e6c3b68d2d48d8fc"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pcapplusplus/OSV-2025-290.yaml"