librawspeed: Bad-cast to rawspeed::RawDecoder from invalid vptr;rawspeed::RawDecoderDecodeThread;rawspeed::RawDecoder::startTasks

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=4612305675354112 Project: librawspeed Fuzzer: libFuzzerlibrawspeedX3fParserFuzzer-GetDecoder-Decode Fuzz target binary: X3fParserFuzzer-GetDecoder-Decode Job Type: libfuzzerubsanlibrawspeed...

Oracle Linux 7 : kernel (ELSA-2017-1615)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-1615 advisory. - mm enlarge stack guard gap Larry Woodman 1452732 1452733 CVE-2017-1000364 - fs nfsd: stricter decoding of write-like NFSv2/v3 ops 'J. Bruce Fields'...

DEBIAN-CVE-2017-9998

The dwarfdecodesleb128chk function in dwarfleb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service Segmentation fault via a crafted file...

ALPINE-CVE-2017-9992

Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact vi...

UBUNTU-CVE-2017-9996

The cdxldecodeframe function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY format, which allows remote attackers to cause a denial of service heap-based buffer overflow and...

ALPINE-CVE-2017-9996

The cdxldecodeframe function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY format, which allows remote attackers to cause a denial of service heap-based buffer overflow and...

UBUNTU-CVE-2017-9992

Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact vi...

DEBIAN-CVE-2017-9992

Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact vi...

FFmpeg 'decode_dds1' function heap buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A heap buffer overflow vulnerability exists in the 'decodedds1' function in the libavcodec/dfa.c file in FFmpeg. A remote attacker could exploit this vulnerability to cause a denial of...

gdal: Crash in bool LercNS::Lerc2::Decode<unsigned char>

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=4841642785767424 Project: gdal Fuzzer: libFuzzergdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x60b000961178 Crash State: bool LercNS::Lerc2::Decode...

UBUNTU-CVE-2017-9782

JasPer 2.0.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted image, related to the jp2decode function in libjasper/jp2/jp2dec.c...

GNU Binutils 'opcodes/rl78-decode.opc' Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A security vulnerability exists in...

GNU Binutils 'opcodes/rx-decode.opc' Remote Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A security vulnerability exists in...

DEBIAN-CVE-2017-9750

opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this fil...

UBUNTU-CVE-2017-9750

opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this fil...

DEBIAN-CVE-2017-9751

opcodes/rl78-decode.opc in GNU Binutils 2.28 has an unbounded GETBYTE macro, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

UBUNTU-CVE-2017-9751

opcodes/rl78-decode.opc in GNU Binutils 2.28 has an unbounded GETBYTE macro, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

gdal: Heap-buffer-overflow in bool LercNS::Lerc2::ReadDataOneSweep<unsigned char>

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6063691910873088 Project: gdal Fuzzer: libFuzzergdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x607000001176 Crash State: bool...

FreeRadius -- Multiple vulnerabilities

Guido Vranken reports: Multiple vulnerabilities found via fuzzing: FR-GV-201 v2,v3 Read / write overflow in makesecret FR-GV-202 v2 Write overflow in radcoalesce FR-GV-203 v2 DHCP - Memory leak in decodetlv FR-GV-204 v2 DHCP - Memory leak in frdhcpdecode FR-GV-205 v2 DHCP - Buffer over-read in...

Linux/x86 - XOR encoded execve(/bin/sh) setuid(0) setgid(0) Shellcode (66 bytes)

Linux/x86 - XOR encoded execve/bin/sh setuid0 setgid0 Shellcode 66 bytes. Shellcode exploit for Linx86 platform ;Title: Linux/x86 - 66 byte - execve/bin/sh - setuid0 - setgid0 - XOR encrypted ;Author: nullparasite ;Contact: [email protected] ;Category: Shellcode ;Architecture: Linux x86...