CVE-2025-21866 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC

In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VMALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a KASAN-enabled kernel 6.13-rc6: BUG: KASAN: vmalloc-out-of-bounds in...

wget2/wget_options_fuzzer: Heap-buffer-overflow in _iri_unescape_inline

Project: https://gitlab.com/gnuwget/wget2.git Detailed report: https://oss-fuzz.com/testcase?key=5668230217072640 Project: wget2 Fuzzer: libFuzzerwget2wgetoptionsfuzzer Fuzz target binary: wgetoptionsfuzzer Job Type: libfuzzerasanwget2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...

strongswan/fuzz_certs: Heap-buffer-overflow in gmp_emsa_pkcs1_signature_data

Detailed report: https://oss-fuzz.com/testcase?key=5761587219005440 Project: strongswan Fuzzer: aflstrongswanfuzzcerts Fuzz target binary: fuzzcerts Job Type: aflasanstrongswan Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address: 0x6030000019a1 Crash State:...

skia/api_raster_n32_canvas: Heap-use-after-free in SkPath::reverseAddPath

Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5721515274797056 Project: skia Fuzzer: aflskiaapirastern32canvas Fuzz target binary: apirastern32canvas Job Type: aflasanskia Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address:...

chakra: Crash in Js::InterpreterStackFrame::DoLoopBodyStart

Project: https://github.com/Microsoft/ChakraCore.git Detailed report: https://oss-fuzz.com/testcase?key=5378660243603456 Project: chakra Fuzzer: jsfuzzer Job Type: asanchakra Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0xfffffffffffffffd Crash State:...

skia/textblob_deserialize: Heap-buffer-overflow in is_valid_endian_marker

Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5669127323648000 Project: skia Fuzzer: libFuzzerskiatextblobdeserialize Fuzz target binary: textblobdeserialize Job Type: libfuzzerasanskia Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...

imagemagick/encoder_xc_fuzzer: Heap-buffer-overflow in string

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5399651365683200 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderxcfuzzer Fuzz target binary: encoderxcfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...