Project

General

Profile

Actions

Bug #4387

closed

Heap-use-after-free READ 8 · JsonDNP3LoggerToClient

Added by Philippe Antoine about 3 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
Difficulty:
Label:
Needs backport, Needs backport to 6.0

Description

Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31549

Use after realloc
DNP3 seems the only one to use OutputJsonBuilderBuffer dangerously


Related issues 1 (0 open1 closed)

Copied to Suricata - Security #4420: Heap-use-after-free READ 8 · JsonDNP3LoggerToClientClosedJason IshActions
Actions #1

Updated by Philippe Antoine about 3 years ago

  • Status changed from New to In Review

Gitlab MR

Actions #2

Updated by Jeff Lucovsky almost 3 years ago

  • Copied to Security #4420: Heap-use-after-free READ 8 · JsonDNP3LoggerToClient added
Actions #4

Updated by Victor Julien over 2 years ago

  • Private changed from Yes to No
Actions

Also available in: Atom PDF