Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ossfuzzGoogleOSSFUZZ-9051
HistoryJun 23, 2018 - 10:23 a.m.

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in get_be16

2018-06-2310:23:37
Google
bugs.chromium.org
4
JSON

Project:
https://github.com/openvswitch/ovs.git

Detailed report: https://oss-fuzz.com/testcase?key=6502620041576448

Project: openvswitch
Fuzzer: libFuzzer_openvswitch_ofp_print_fuzzer
Fuzz target binary: ofp_print_fuzzer
Job Type: libfuzzer_asan_openvswitch
Platform Id: linux

Crash Type: Heap-buffer-overflow READ 2
Crash Address: 0x60c000000300
Crash State:
get_be16
get_subfield
decode_LEARN_specs

Sanitizer: address (ASAN)

Recommended Security Severity: Medium

Reproducer Testcase: https://oss-fuzz.com/download?testcase_id=6502620041576448

Issue filed automatically.

See https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md for more information.

This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without an upstream patch, then the bug report will automatically
become visible to the public.

When you fix this bug, please

  • mention the fix revision(s).
  • state whether the bug was a short-lived regression or an old bug in any stable releases.
  • add any other useful information.
    This information can help downstream consumers.

If you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues.

JSON