OSV-2025-80

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2025-80.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-80
Published
2025-02-02T00:00:58.798346Z
Modified
2025-02-02T00:00:58.798951Z
Summary
Segv on unknown address in ndpi_snprintf
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=393420192

Crash type: Segv on unknown address
Crash state:
ndpi_snprintf
process_ndpi_collected_info
ndpi_workflow_process_packet
References

Affected packages

OSS-Fuzz / ndpi

Package

Name
ndpi
Purl
pkg:generic/ndpi

Affected ranges

Type
GIT
Repo
https://github.com/ntop/nDPI.git
Events
Introduced
aacade6d9571bdf6fc9bd0b5cbbafb65d5123f8f
Fixed
41133638dc303be1717462876814a6102669757c
Fixed
5424d144242c5b85176465acb7376237d80c6d91

Ecosystem specific 

{
    "severity": null
}

Database specific

fixed_range 
"fcff6d5abb168c3318c019fc140ce1e809b40d2b:5424d144242c5b85176465acb7376237d80c6d91"
introduced_range 
"dd4be0a9e067e5a8f41e62a17b11d6a8c7450810:fcff6d5abb168c3318c019fc140ce1e809b40d2b"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ndpi/OSV-2025-80.yaml"