OSV-2025-323

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2025-323.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2025-323

Published

2025-05-04T00:19:17.568436Z

Modified

2025-05-04T00:19:17.568755Z

Summary

Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=415382662

Crash type: Security exception
Crash state:
com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
java.base/java.lang.StringLatin1.getChars
java.base/java.lang.String.getChars

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=415382662

Affected packages

OSS-Fuzz / checkstyle

Package

Name: checkstyle
Purl: pkg:generic/checkstyle

Affected ranges

Type: GIT
Repo: https://github.com/checkstyle/checkstyle
Events: Introduced

fbdc1d6f12067c17763b1c1feae69e26b8b818c6

Fixed

8408f57a625de7a15197a11a6fbe91f1b287d5bd

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

introduced_range

"9b3bb381ea8065c8f72316dc7d86e949e172fe67:f182e00c92408a21d2f272f01ac7cf1992265253"

fixed_range

"be4cf504b919257408487e3f6956f69b473137bd:8408f57a625de7a15197a11a6fbe91f1b287d5bd"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2025-323.yaml"