CVE-2020-15474 (NVD)

2020-07-01

In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c.

Products Ndpi
Type Out-of-bounds Write (CWE-787)
First patch - None (likely due to unavailable code)
Links https://github.com/ntop/nDPI/commit/23594f036536468072198a57c59b6e9d63caf6ce