CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
46.1%
snappy-java is vulnerable to Denial Of Service (DoS). The vulnerability exists because the hasNextChunk
function of SnappyInputStream.java
does not properly check for negative chunk sizes and huge positive values such as 0x7FFFFFFF
, which leads to java.lang.NegativeArraySizeException
and java.lang.OutOfMemoryError
exceptions, allowing an attacker to cause an application crash.
github.com/xerial/snappy-java/blob/05c39b2ca9b5b7b39611529cc302d3d796329611/src/main/java/org/xerial/snappy/SnappyInputStream.java#L388
github.com/xerial/snappy-java/blob/master/src/main/java/org/xerial/snappy/SnappyInputStream.java
github.com/xerial/snappy-java/commit/3bf67857fcf70d9eea56eed4af7c925671e8eaea
github.com/xerial/snappy-java/security/advisories/GHSA-qcwq-55hx-v3vh
security.netapp.com/advisory/ntap-20230818-0009/