Bugs that survive the heat of continuous fuzzing

Even when a project has been intensively fuzzed for years, bugs can still survive. ​​OSS-Fuzz is one of the most impactful security initiatives in open source. In collaboration with the OpenSSF Foundation, it has helped to find thousands of bugs in open-source software. Today, OSS-Fuzz fuzzes mor...

GHSA-38RV-8X93-PVRH

creationtimestamp| type| source ---|---|--- 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

GHSA-38H4-FX85-QCX7

creationtimestamp| type| source ---|---|--- 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

GHSA-496F-X7CQ-CQ39

creationtimestamp| type| source ---|---|--- 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

GHSA-G9XM-7538-MQ8W

creationtimestamp| type| source ---|---|--- 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

GHSA-HRW9-GGG3-3R4R

creationtimestamp| type| source ---|---|--- 2025-02-26 21:25:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5613 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

CVE-2024-39695

creationtimestamp| type| source ---|---|--- 2024-07-08 18:40:32+00:00| seen| https://t.me/cvedetector/189 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing/...

CVE-2024-24826

creationtimestamp| type| source ---|---|--- 2024-02-13 00:26:15+00:00| seen| https://t.me/ctinow/183524 2024-02-15 06:26:49+00:00| seen| https://t.me/ctinow/185264 2025-12-29 21:01:14+00:00| seen| https://github.blog/security/vulnerability-research/bugs-that-survive-the-heat-of-continuous-fuzzing...

CVE-2023-44398

creationtimestamp| type| source ---|---|--- 2023-11-06 20:25:50+00:00| seen| https://t.me/cibsecurity/73620 2025-02-26 21:25:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5613 2025-12-29 21:01:14+00:00| seen|...

ClusterFuzzLite - Simple Continuous Fuzzing That Runs In CI

ClusterFuzzLite is a continuous fuzzing solution that runs as part of Continuous Integration CI workflows to find vulnerabilities faster than ever before. With just a few lines of code, GitHub users can integrate ClusterFuzzLite into their workflow and fuzz pull requests to catch bugs before they...

onefuzz

:exclamation: IMPORTANT NOTICE :exclamation: August 31...

Google Debuts Continuous Fuzzer for Open Source Software

A new Google program aimed at continuously fuzzing open source software has already detected over 150 bugs. The program, OSS-Fuzz, currently in beta mode, is designed to help unearth programming errors in open source software via fuzz testing. Fuzz testing, or fuzzing is when bits of randomly...