OSS-Fuzz - Continuous Fuzzing Of Open Source Software

Fuzz testing is a well-known technique for uncovering programming errors in software. Many of these detectable errors, like buffer overflow, can have serious security implications. Google has found thousands of security vulnerabilities and stability bugs by deploying guided in-process fuzzing of...

stb:stbi_read_fuzzer: Heap-buffer-overflow in load_jpeg_image

Detailed Report: https://oss-fuzz.com/testcase?key=5726154781884416 Project: stb Fuzzing Engine: afl Fuzz Target: stbireadfuzzer Job Type: aflasanstb Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x62b000006e0f Crash State: loadjpegimage stbijpegload stbiloadmain...