208 matches found
CVE-2012-6133
Multiple cross-site scripting XSS vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the 1 @okmessage or 2 @errormessage parameter to issue...
CVE-2019-15583
An information disclosure exists in 12.3.2, 12.2.6, and 12.1.12 for GitLab Community Edition CE and Enterprise Edition EE. When an issue was moved to a public project from a private one, the associated private labels and the private project namespace would be disclosed through the GitLab API...
llvm:clang-fuzzer: Segv on unknown address in clang::Sema::getCurLambda
Detailed Report: https://oss-fuzz.com/testcase?key=5639017945366528 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Sema::getCurLambda...
llvm:clang-fuzzer: Segv on unknown address in clang::Parser::tryParseCXXIdExpression
Detailed Report: https://oss-fuzz.com/testcase?key=5730465248182272 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Parser::tryParseCXXIdExpression...
freetype2:cff-render-ftengine: Invalid-builtin-use in FT_Outline_Get_Orientation
Detailed Report: https://oss-fuzz.com/testcase?key=5735696199581696 Project: freetype2 Fuzzing Engine: libFuzzer Fuzz Target: cff-render-ftengine Job Type: libfuzzerubsanfreetype2 Platform Id: linux Crash Type: Invalid-builtin-use Crash Address: Crash State: FTOutlineGetOrientation...
wireshark/fuzzshark_ip_proto-udp: Heap-buffer-overflow in reassemble_continuation_state
Detailed report: https://oss-fuzz.com/testcase?key=5661584824729600 Project: wireshark Fuzzer: aflwiresharkfuzzsharkipproto-udp Fuzz target binary: fuzzsharkipproto-udp Job Type: aflasanwireshark Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash Address: 0x604002190634 Crash State:...
imagemagick/encoder_ptif_fuzzer: Heap-buffer-overflow in PushShortPixel
Detailed report: https://oss-fuzz.com/testcase?key=5722372625137664 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderptiffuzzer Fuzz target binary: encoderptiffuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x61d000004e84...
karchive/karchive_fuzzer: Use-of-uninitialized-value in qstrlen
Project: git://anongit.kde.org/karchive Detailed report: https://oss-fuzz.com/testcase?key=5640360216231936 Project: karchive Fuzzer: libFuzzerkarchivefuzzer Fuzz target binary: karchivefuzzer Job Type: libfuzzermsankarchive Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address:...
Instantbox - Get A Clean, Ready-To-Go Linux Box In Seconds
Get a clean, ready-to-go Linux box in seconds. Introduction What is instantbox? It's a project that spins up temporary Linux systems with instant webshell access from any browser. What can an instantbox do? 1. provides a clean Linux environment for a presentation 2. let students experience the...
[SECURITY] [DLA 1750-1] roundup security update
Package : roundup Version : 1.4.20-1.1+deb8u2 CVE ID : CVE-2019-10904 Hanno Böck was discovered that there was a cross-site scripting XSS vulnerability in the web front-end of the roundup issue- tracking system. For Debian 8 "Jessie", this issue has been fixed in roundup version 1.4.20-1.1+deb8u2...
Java Security Analysis for IntelliJ IDEA
New Plugin Features In the course of our last releases, we added various new functionalities and improved existing ones to enhance the quality of our IntelliJ plugin. These include support for analyzing Java code, support for multi-module projects, tracking and commenting of issues, and the optio...
opencv/imread_fuzzer: Heap-buffer-overflow in gtTileSeparate
Project: https://github.com/opencv/opencv.git Detailed report: https://oss-fuzz.com/testcase?key=5098633869918208 Project: opencv Fuzzer: libFuzzeropencvimreadfuzzer Fuzz target binary: imreadfuzzer Job Type: libfuzzerasanopencv Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash...
Traq Cross-Site Request Forgery Vulnerability
Traq is a PHP-based project management and issue tracking system. Traq suffers from a cross-site request forgery vulnerability that arises from a WEB application that does not adequately validate that a request is coming from a trusted user. An attacker could use this vulnerability to send...
imagemagick/encoder_ept3_fuzzer: Use-of-uninitialized-value in WriteBlob
Detailed report: https://oss-fuzz.com/testcase?key=5085775568306176 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderept3fuzzer Fuzz target binary: encoderept3fuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...
Internet Bug Bounty: ZeroMQ libzmq remote code execution
Bug report and exploit: https://github.com/zeromq/libzmq/issues/3351 Fix by me: https://github.com/zeromq/libzmq/pull/3353 My motive for full disclosure is as follows: Is it true that it is not safe to use ZeroMQ over the internet because it will crash? Earlier versions of the ZeroMQ library befo...
poppler/pdf_fuzzer: Use-of-uninitialized-value in Parser::makeStream
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=5732071763345408 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...
harfbuzz/hb-shape-fuzzer: Global-buffer-overflow in BEInt<unsigned short, 2>::operator unsigned short
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5718889451749376 Project: harfbuzz Fuzzer: aflharfbuzzhb-shape-fuzzer Fuzz target binary: hb-shape-fuzzer Job Type: aflasanharfbuzz Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Cra...
libreoffice/ww6fuzzer: Heap-use-after-free in SwIndex::Remove
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5733739670274048 Project: libreoffice Fuzzer: afllibreofficeww6fuzzer Fuzz target binary: ww6fuzzer Job Type: aflasanlibreoffice Platform Id: linux Crash Type: Heap-use-after-free READ 8 Cra...
glib/fuzz_bookmark: Heap-buffer-overflow in fuzz_bookmark.c
Project: https://gitlab.gnome.org/GNOME/glib.git Detailed report: https://oss-fuzz.com/testcase?key=5131520774766592 Project: glib Fuzzer: libFuzzerglibfuzzbookmark Fuzz target binary: fuzzbookmark Job Type: libfuzzerasanglib Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Addres...
poppler/pdf_fuzzer: Use-of-uninitialized-value in clip01
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=5664576019365888 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...