OSV-2026-94

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2026-94.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2026-94

Withdrawn

2026-01-21T07:56:29.723638Z

Published

2026-01-21T00:01:52.719442Z

Modified

2026-01-21T00:01:52.719876Z

Summary

Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=476574781

Crash type: Security exception
Crash state:
com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement
java.base/jdk.internal.misc.Unsafe.weakCompareAndSetInt
java.base/jdk.internal.misc.Unsafe.getAndAddInt

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=476574781

Affected packages

OSS-Fuzz / checkstyle

Package

Name: checkstyle
Purl: pkg:generic/checkstyle

Affected ranges

Type: GIT
Repo: https://github.com/checkstyle/checkstyle
Events: Introduced

ba4a81f9fd3b8e989b435f1f3d678e001fb58eeb

Affected versions

checkstyle-12.*

checkstyle-12.3.1

checkstyle-13.*

checkstyle-13.0.0

Ecosystem specific

{
    "severity": "LOW"
}

Database specific

introduced_range

"9550a2067ac6f6c99326720310189bd004eb36bc:0db26b08d18fc0fae63b86dc91c5f2ce15a876e0"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/checkstyle/OSV-2026-94.yaml"