Critical Vulnerability Information Vulnerability Type: Stack-buffer-overflow Affected Component: function Crash Type: Stack-buffer-overflow WRITE 6 Crash Address: 0x7ffe7ac81ff3 Crash Stack: - processClientServerHello - processTLSBlock - ndpi_search_tls_tcp Project: ndpi Fuzzing Engine: libFuzzer Fuzzing Target: fuzz_process_packet Task Type: libfuzzer_asan_ndpi Platform: Linux Sanitizer: Address (ASAN) Recommended Security Severity: High Status and Handling Information Status: Fixed (Verified) Priority: P2 Severity: S1 Reporter: mo...@clusterfuzz-externa... Owner: mo...@clusterfuzz-externa... Verifier: mo...@clusterfuzz-externa... Report Date: 2021-02-06 Disclosure Date: 2021-05-07 Related Resources Detailed Report: https://oss-fuzz.com/testcase?key=4831031280664576 Reproducible Test Case: https://oss-fuzz.com/download?testcase_id=4831031280664576 Community Guide: https://google.github.io/oss-fuzz/advanced-topics/reproducing Issue Tracking: https://github.com/google/oss-fuzz/issues Additional Information Automatically Submitted Issue: Yes Disclosure Window: 90-day disclosure period, automatically disclosed if exceeded