Project

General

Profile

Actions
Copy link

Security #4420

closed

Heap-use-after-free READ 8 · JsonDNP3LoggerToClient

Added by Jeff Lucovsky about 3 years ago. Updated almost 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jason Ish
Target version:
6.0.3
Affected Versions:
6.0.2
Label:
CVE:
Git IDs:
Severity:
Disclosure Date:

Description

Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31549

Use after realloc
DNP3 seems the only one to use OutputJsonBuilderBuffer dangerously

Related issues 1 (0 open1 closed)

Copied from Suricata - Bug #4387: Heap-use-after-free READ 8 · JsonDNP3LoggerToClientClosedPhilippe AntoineActions
Actions
Copy link

Also available in: Atom PDF