{"id": "OSSFUZZ-22715", "type": "ossfuzz", "bulletinFamily": "software", "title": "suricata:fuzz_sigpcap: Heap-use-after-free in DetectParseDupSigCompareFunc", "description": "Project:\nhttps://github.com/OISF/suricata.git\n\nDetailed Report: https://oss-fuzz.com/testcase?key=5103702007611392\n\nProject: suricata\nFuzzing Engine: honggfuzz\nFuzz Target: fuzz_sigpcap\nJob Type: honggfuzz_asan_suricata\nPlatform Id: linux\n\nCrash Type: Heap-use-after-free READ 4\nCrash Address: 0x6130000e2760\nCrash State:\n DetectParseDupSigCompareFunc\n HashListTableLookup\n DetectEngineSignatureIsDuplicate\n \nSanitizer: address (ASAN)\n\nRecommended Security Severity: High\n\nCrash Revision: https://oss-fuzz.com/revisions?job=honggfuzz_asan_suricata&revision=202005210334\n\nReproducer Testcase: https://oss-fuzz.com/download?testcase_id=5103702007611392\n\nIssue filed automatically.\n\nSee https://google.github.io/oss-fuzz/advanced-topics/reproducing for instructions to reproduce this bug locally.\nWhen you fix this bug, please\n * mention the fix revision(s).\n * state whether the bug was a short-lived regression or an old bug in any stable releases.\n * add any other useful information.\nThis information can help downstream consumers.\n\nIf you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues. Comments on individual Monorail issues are not monitored.\n\nThis bug is subject to a 90 day disclosure deadline. If 90 days elapse\nwithout an upstream patch, then the bug report will automatically\nbecome visible to the public.", "published": "2020-05-28T21:35:11", "modified": "2020-08-06T20:09:45", "cvss": {}, "href": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22715", "reporter": "Google", "references": [], "cvelist": [], "lastseen": "2020-08-06T20:33:48", "viewCount": 0, "enchantments": {"dependencies": {"references": [], "modified": "2020-08-06T20:33:48", "rev": 2}, "score": {"value": -0.4, "vector": "NONE", "modified": "2020-08-06T20:33:48", "rev": 2}, "vulnersScore": -0.4}, "ossfuzz": {"issue": 22715, "status": "Verified", "project": "suricata", "ref": "https://oss-fuzz.com/revisions?job=honggfuzz_asan_suricata&range=202007060143:202007070145", "crashType": "Heap-use-after-free READ 4", "revisions": ["c09235e327eed02eb22d990c017c40316cd246f8:8c5c949cfa05e00a896fe6f61513f1d234cb7d24"], "project_repos": ["https://github.com/OISF/suricata.git"], "tags": ["5.0.1", "5.0.0", "5.0.0-rc1", "5.0.0-beta1", "4.1.2", "4.1.1", "4.1.0", "4.1.0-rc2", "4.1.0-rc1", "4.1.0-beta1", "4.0.1", "4.0.0", "4.0.0-rc2", "4.0.0-rc1", "4.0.0-beta1", "3.2.1", "3.2", "3.2RC", "3.2beta", "3.1.2", "3.1.1", "3.1", "3.1RC", "3.0.1", "3.0.1RC", "3.0", "3.0RC", "2.1beta", "2.0.2", "2.0.1", "2.0.1rc", "2.0", "2.0rc", "2.0beta", "1.4", "1.4rc", "1.4beta", "1.3.1", "1.3", "1.3rc", "1.3beta", "1.2.1", "1.2", "1.2rc", "1.2beta", "1.1", "1.1rc", "1.1beta", "1.0.2", "1.0.1", "1.0.0", "0.8.2"]}, "affectedSoftware": [{"name": "suricata", "version": "5.0.1", "operator": "eq"}, {"name": "suricata", "version": "5.0.0", "operator": "eq"}, {"name": "suricata", "version": "5.0.0-rc1", "operator": "eq"}, {"name": "suricata", "version": "5.0.0-beta1", "operator": "eq"}, {"name": "suricata", "version": "4.1.2", "operator": "eq"}, {"name": "suricata", "version": "4.1.1", "operator": "eq"}, {"name": "suricata", "version": "4.1.0", "operator": "eq"}, {"name": "suricata", "version": "4.1.0-rc2", "operator": "eq"}, {"name": "suricata", "version": "4.1.0-rc1", "operator": "eq"}, {"name": "suricata", "version": "4.1.0-beta1", "operator": "eq"}, {"name": "suricata", "version": "4.0.1", "operator": "eq"}, {"name": "suricata", "version": "4.0.0", "operator": "eq"}, {"name": "suricata", "version": "4.0.0-rc2", "operator": "eq"}, {"name": "suricata", "version": "4.0.0-rc1", "operator": "eq"}, {"name": "suricata", "version": "4.0.0-beta1", "operator": "eq"}, {"name": "suricata", "version": "3.2.1", "operator": "eq"}, {"name": "suricata", "version": "3.2", "operator": "eq"}, {"name": "suricata", "version": "3.2RC", "operator": "eq"}, {"name": "suricata", "version": "3.2beta", "operator": "eq"}, {"name": "suricata", "version": "3.1.2", "operator": "eq"}, {"name": "suricata", "version": "3.1.1", "operator": "eq"}, {"name": "suricata", "version": "3.1", "operator": "eq"}, {"name": "suricata", "version": "3.1RC", "operator": "eq"}, {"name": "suricata", "version": "3.0.1", "operator": "eq"}, {"name": "suricata", "version": "3.0.1RC", "operator": "eq"}, {"name": "suricata", "version": "3.0", "operator": "eq"}, {"name": "suricata", "version": "3.0RC", "operator": "eq"}, {"name": "suricata", "version": "2.1beta", "operator": "eq"}, {"name": "suricata", "version": "2.0.2", "operator": "eq"}, {"name": "suricata", "version": "2.0.1", "operator": "eq"}, {"name": "suricata", "version": "2.0.1rc", "operator": "eq"}, {"name": "suricata", "version": "2.0", "operator": "eq"}, {"name": "suricata", "version": "2.0rc", "operator": "eq"}, {"name": "suricata", "version": "2.0beta", "operator": "eq"}, {"name": "suricata", "version": "1.4", "operator": "eq"}, {"name": "suricata", "version": "1.4rc", "operator": "eq"}, {"name": "suricata", "version": "1.4beta", "operator": "eq"}, {"name": "suricata", "version": "1.3.1", "operator": "eq"}, {"name": "suricata", "version": "1.3", "operator": "eq"}, {"name": "suricata", "version": "1.3rc", "operator": "eq"}, {"name": "suricata", "version": "1.3beta", "operator": "eq"}, {"name": "suricata", "version": "1.2.1", "operator": "eq"}, {"name": "suricata", "version": "1.2", "operator": "eq"}, {"name": "suricata", "version": "1.2rc", "operator": "eq"}, {"name": "suricata", "version": "1.2beta", "operator": "eq"}, {"name": "suricata", "version": "1.1", "operator": "eq"}, {"name": "suricata", "version": "1.1rc", "operator": "eq"}, {"name": "suricata", "version": "1.1beta", "operator": "eq"}, {"name": "suricata", "version": "1.0.2", "operator": "eq"}, {"name": "suricata", "version": "1.0.1", "operator": "eq"}, {"name": "suricata", "version": "1.0.0", "operator": "eq"}, {"name": "suricata", "version": "0.8.2", "operator": "eq"}], "immutableFields": []}

{}