OSV-2025-80

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2025-80.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2025-80

Published

2025-02-02T00:00:58.798346Z

Modified

2025-02-02T00:00:58.798951Z

Summary

Segv on unknown address in ndpi_snprintf

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=393420192

Crash type: Segv on unknown address
Crash state:
ndpi_snprintf
process_ndpi_collected_info
ndpi_workflow_process_packet

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=393420192

Affected packages

OSS-Fuzz / ndpi

Package

Name: ndpi
Purl: pkg:generic/ndpi

Affected ranges

Type: GIT
Repo: https://github.com/ntop/nDPI.git
Events: Introduced

aacade6d9571bdf6fc9bd0b5cbbafb65d5123f8f

Fixed

41133638dc303be1717462876814a6102669757c

Fixed

5424d144242c5b85176465acb7376237d80c6d91

Ecosystem specific

{
    "severity": null
}

Database specific

{
    "fixed_range": "fcff6d5abb168c3318c019fc140ce1e809b40d2b:5424d144242c5b85176465acb7376237d80c6d91",
    "introduced_range": "dd4be0a9e067e5a8f41e62a17b11d6a8c7450810:fcff6d5abb168c3318c019fc140ce1e809b40d2b"
}