252 matches found
libheif:file-fuzzer: Crash in slice_segment_header::operator=
Detailed Report: https://oss-fuzz.com/testcase?key=5742814906548224 Project: libheif Fuzzing Engine: libFuzzer Fuzz Target: file-fuzzer Job Type: libfuzzerasani386libheif Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0xbebebebe Crash State: slicesegmentheader::operator=...
Company Detected Years-Long Breach Only After Hacker Maxed Out Servers' Storage
What could be even worse than getting hacked? It's the "failure to detect intrusions" that always results in huge losses to the organizations. Utah-based technology companyInfoTrax Systems is the latest example of such a security blunder, as the company was breached more than 20 times from May 20...
yara:rules_fuzzer: Heap-double-free in yara_yyparse
Project: https://github.com/VirusTotal/yara.git Detailed Report: https://oss-fuzz.com/testcase?key=5123250044796928 Project: yara Fuzzing Engine: afl Fuzz Target: rulesfuzzer Job Type: aflasanyara Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x6120012ffd00 Crash State: yarayypar...
libheif:file-fuzzer: Heap-use-after-free in void apply_sao_internal<unsigned short>
Detailed Report: https://oss-fuzz.com/testcase?key=5649801827319808 Project: libheif Fuzzing Engine: afl Fuzz Target: file-fuzzer Job Type: aflasanlibheif Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0x613000010a7d Crash State: void applysaointernal void applysao...
matio:matio_fuzzer: Heap-buffer-overflow in H5O_fill_new_shared_decode
Detailed Report: https://oss-fuzz.com/testcase?key=5672244609286144 Project: matio Fuzzing Engine: afl Fuzz Target: matiofuzzer Job Type: aflasanmatio Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address: 0x61500004fac8 Crash State: H5Ofillnewshareddecode H5Omsgreadoh H5Omsgread...
opensc:fuzz_pkcs15_reader: Heap-buffer-overflow in coolkey_v1_get_attribute_len
Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=6319339464818688 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
llvm:clang-objc-fuzzer: Heap-use-after-free in clang::TokenLexer::Lex
Detailed Report: https://oss-fuzz.com/testcase?key=5647561683107840 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-objc-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Heap-use-after-free READ Crash Address: 0x634000002840 Crash State: clang::TokenLexer::Lex...
openh264:decoder_fuzzer: Heap-use-after-free in WelsDec::SetUnRef
Project: https://github.com/cisco/openh264.git Detailed Report: https://oss-fuzz.com/testcase?key=5674612192444416 Project: openh264 Fuzzing Engine: libFuzzer Fuzz Target: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: Heap-use-after-free WRITE 1 Crash Address:...
Execs Could Face Jail Time For Privacy Violations
A new data privacy bill threatens large tech firms, like Facebook, with tough penalties – including monetary fines and up to 20 years of jail time for executives – if they violate user privacy policies. The “Mind Your Own Business Act,” proposed by Sen. Ron Wyden D-Ore. on Thursday, gives the...
binutils:fuzz_disassemble: Stack-buffer-overflow in get_indirect_operand
Detailed Report: https://oss-fuzz.com/testcase?key=5663912053178368 Project: binutils Fuzzing Engine: afl Fuzz Target: fuzzdisassemble Job Type: aflasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7f4f3e03ae5a Crash State: getindirectoperand printtwoopera...
Equifax to Pay up to $700 Million in 2017 Data Breach Settlement
Equifax, one of the three largest credit-reporting firms in the United States, has to pay up to $700 million in fines to settle a series of state and federal investigations into the massive 2017 data breach that exposed the personal and financial data of nearly 150 million Americans—that's almost...
What You Should Know About the Equifax Data Breach Settlement
Big-three credit bureau Equifax has reportedly agreed to pay at least $650 million to settle lawsuits stemming from a 2017 breach that let intruders steal personal and financial data on roughly 148 million Americans. Here's a brief primer that attempts to break down what this settlement means for...
Privacy Experts: Facebook's $5B Fine Unlikely to Do Much
The $5 billion fine that the Federal Trade Commission has slapped on Facebook for privacy violations may be the largest ever levied by the agency, but it’s being derided as “chump change” and ineffective by lawmakers and privacy analysts. The settlement, reported Friday evening, stems from...
readstat/fuzz_format_spss_commands: Stack-buffer-overflow in readstat_copy_quoted
Project: https://github.com/WizardMac/ReadStat.git Detailed report: https://oss-fuzz.com/testcase?key=5701415210582016 Project: readstat Fuzzer: libFuzzerreadstatfuzzformatspsscommands Fuzz target binary: fuzzformatspsscommands Job Type: libfuzzerasanreadstat Platform Id: linux Crash Type:...
gdal/gdal_translate_fuzzer: Heap-buffer-overflow in GTiffRasterBand::IReadBlock
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5764371029950464 Project: gdal Fuzzer: libFuzzergdaltranslatefuzzer Fuzz target binary: gdaltranslatefuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash...
openthread/ncp-uart-received-fuzzer: Stack-buffer-overflow in ot::Ip6::OptionPadN::Init
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5768121945686016 Project: openthread Fuzzer: libFuzzeropenthreadncp-uart-received-fuzzer Fuzz target binary: ncp-uart-received-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash...
cryptofuzz/cryptofuzz-boringssl-noasm: Unknown signal in Hacl_Hash_Core_SHA1_update
Detailed report: https://oss-fuzz.com/testcase?key=5734860108333056 Project: cryptofuzz Fuzzer: libFuzzercryptofuzzcryptofuzz-boringssl-noasm Fuzz target binary: cryptofuzz-boringssl-noasm Job Type: libfuzzerubsancryptofuzz Platform Id: linux Crash Type: Unknown signal Crash Address: 0x000000c285...
open62541/fuzz_json_decode_encode: Heap-buffer-overflow in searchObjectForKeyRec
Project: https://github.com/open62541/open62541.git Detailed report: https://oss-fuzz.com/testcase?key=5163330924183552 Project: open62541 Fuzzer: libFuzzeropen62541fuzzjsondecodeencode Fuzz target binary: fuzzjsondecodeencode Job Type: libfuzzerasanopen62541 Platform Id: linux Crash Type:...
open62541/fuzz_binary_message: Heap-use-after-free in String_clear
Project: https://github.com/open62541/open62541.git Detailed report: https://oss-fuzz.com/testcase?key=5749297120804864 Project: open62541 Fuzzer: libFuzzeropen62541fuzzbinarymessage Fuzz target binary: fuzzbinarymessage Job Type: libfuzzerasanopen62541 Platform Id: linux Crash Type:...
ffmpeg/ffmpeg_AV_CODEC_ID_AGM_fuzzer: Crash in decode_huffman2
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5646451545210880 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDAGMfuzzer Fuzz target binary: ffmpegAVCODECIDAGMfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: UNKNOWN READ Crash...