libraw:libraw_fuzzer: Stack-buffer-overflow in __libcpp_strchr

Project: https://github.com/libraw/libraw.git Detailed Report: https://oss-fuzz.com/testcase?key=5640387220996096 Project: libraw Fuzzing Engine: honggfuzz Fuzz Target: librawfuzzer Job Type: honggfuzzasanlibraw Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7f5f52e128...

libraw:libraw_fuzzer: Stack-buffer-overflow in LibRaw_buffer_datastream::gets

Project: https://github.com/libraw/libraw.git Detailed Report: https://oss-fuzz.com/testcase?key=5070269470474240 Project: libraw Fuzzing Engine: libFuzzer Fuzz Target: librawfuzzer Job Type: libfuzzerasanlibraw Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address:...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in tcos_decipher

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5226571123392512 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address:...

pcapplusplus:FuzzTarget: Stack-buffer-overflow in pcpp::IDnsResource::decodeName

Project: https://github.com/seladb/PcapPlusPlus.git Detailed Report: https://oss-fuzz.com/testcase?key=5188876846235648 Project: pcapplusplus Fuzzing Engine: libFuzzer Fuzz Target: FuzzTarget Job Type: libfuzzerasanpcapplusplus Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash...

curl:curl_fuzzer_ftp: Stack-buffer-overflow in Curl_pp_readresp

Project: https://github.com/curl/curl.git Detailed Report: https://oss-fuzz.com/testcase?key=6613612490915840 Project: curl Fuzzing Engine: libFuzzer Fuzz Target: curlfuzzerftp Job Type: libfuzzerasancurl Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7ffe58b2ef40 Cra...

curl:curl_fuzzer_imap: Stack-buffer-overflow in Curl_pp_readresp

Project: https://github.com/curl/curl.git Detailed Report: https://oss-fuzz.com/testcase?key=5727799779524608 Project: curl Fuzzing Engine: honggfuzz Fuzz Target: curlfuzzerimap Job Type: honggfuzzasancurl Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7ffa0b94c420...

CVE-2020-1832

E6878-370 products with versions of 10.0.3.1H557SP27C233 and 10.0.3.1H563SP1C00 have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead ...

CVE-2020-1832

E6878-370 products with versions of 10.0.3.1H557SP27C233 and 10.0.3.1H563SP1C00 have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead ...

CVE-2020-1832

The CVE-2020-1832 issue affects Huawei E6878-370 routers (versions 10.0.3.1 with builds H557SP27C233 and H563SP1C00). The vulnerability is a stack buffer overflow caused by copying an input buffer to an output buffer without proper length verification, allowing an adjacent-network attacker to sen...

quickjs:fuzz_eval: Stack-buffer-overflow in get_class_atom

Project: https://github.com/horhof/quickjs.git https://github.com/bellard/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5071407886368768 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzeval Job Type: aflasanquickjs Platform Id: linux Crash Type: Stack-buffer-overflow WRITE ...

rdkit:smiles_string_to_mol_fuzzer: Stack-buffer-overflow in FindRings::findSSSRforDupCands

Project: https://github.com/rdkit/rdkit.git Detailed Report: https://oss-fuzz.com/testcase?key=5480444207562752 Project: rdkit Fuzzing Engine: afl Fuzz Target: smilesstringtomolfuzzer Job Type: aflasanrdkit Platform Id: linux Crash Type: Stack-buffer-overflow READ 8 Crash Address: 0x7ffe78642860...

dlplibs:wdbfuzzer: Stack-buffer-overflow in WPSEmbeddedObject::operator=

Detailed Report: https://oss-fuzz.com/testcase?key=5726414686126080 Project: dlplibs Fuzzing Engine: libFuzzer Fuzz Target: wdbfuzzer Job Type: libfuzzerasandlplibs Platform Id: linux Crash Type: Stack-buffer-overflow READ 8 Crash Address: 0x7ffeb240ead8 Crash State: WPSEmbeddedObject::operator=...

Security Advisory - Stack Buffer Overflow Vulnerability in Several Products

There is a stack buffer overflow vulnerability in several products. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead to stack buffer overflow which may cause malicious code...

mruby:mruby_fuzzer: Stack-buffer-overflow in fmt_setup

Project: https://github.com/mruby/mruby.git Detailed Report: https://oss-fuzz.com/testcase?key=5085564041953280 Project: mruby Fuzzing Engine: honggfuzz Fuzz Target: mrubyfuzzer Job Type: honggfuzzasanmruby Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7ffe4fea3241...

CentOS 7 : squid (RHSA-2020:2040)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2040 advisory. - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in coolkey_rsa_op

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5769032858075136 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address:...

Ubuntu: Security Advisory (USN-4364-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4364-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4364-1 advisory. It was discovered that the ADIS16400 IIO IMU Driver for the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker...

freeimage:load_from_memory_fuzzer: Stack-buffer-overflow in __libcpp_strchr

Detailed Report: https://oss-fuzz.com/testcase?key=5736051093274624 Project: freeimage Fuzzing Engine: libFuzzer Fuzz Target: loadfrommemoryfuzzer Job Type: libfuzzerasanfreeimage Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7ffd87930840 Crash State: libcppstrchr...

USN-4345-1: Linux kernel vulnerabilities | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description Al Viro discovered that the Linux kernel for s390x systems did not properly perform page table upgrades for kernel sections that use secondary address mode. A local attacker could use this to cause a denial...