dlplibs/cdrfuzzer: Use-of-uninitialized-value in libcdr::CDRContentCollector::_generateBitmapFromPattern

Detailed report: https://oss-fuzz.com/testcase?key=5929090067464192 Project: dlplibs Fuzzer: libFuzzerdlplibscdrfuzzer Fuzz target binary: cdrfuzzer Job Type: libfuzzermsandlplibs Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

systemd/fuzz-unit-file: Use-of-uninitialized-value in streq_ptr

Project: https://github.com/systemd/systemd.git Detailed report: https://oss-fuzz.com/testcase?key=5646670466383872 Project: systemd Fuzzer: libFuzzersystemdfuzz-unit-file Fuzz target binary: fuzz-unit-file Job Type: libfuzzermsansystemd Platform Id: linux Crash Type: Use-of-uninitialized-value...

imagemagick/encoder_dcm_fuzzer: Use-of-uninitialized-value in ReadDCMImage

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=6310279991263232 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderdcmfuzzer Fuzz target binary: encoderdcmfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

open62541/fuzz_binary_message: Heap-use-after-free in NodeId_deleteMembers

Project: https://github.com/open62541/open62541.git Detailed report: https://oss-fuzz.com/testcase?key=5776306856787968 Project: open62541 Fuzzer: aflopen62541fuzzbinarymessage Fuzz target binary: fuzzbinarymessage Job Type: aflasanopen62541 Platform Id: linux Crash Type: Heap-use-after-free READ...

gdal/avce00_fuzzer: Heap-buffer-overflow in _AVCE00ParseTableRecord

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=4682677992030208 Project: gdal Fuzzer: libFuzzergdalavce00fuzzer Fuzz target binary: avce00fuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...

libreoffice/fodpfuzzer: Index-out-of-bounds in SdXMLNumberFormatImportContext::EndElement

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5447658375217152 Project: libreoffice Fuzzer: libFuzzerlibreofficefodpfuzzer Fuzz target binary: fodpfuzzer Job Type: libfuzzerubsanlibreoffice Platform Id: linux Crash Type:...

ffmpeg/ffmpeg_AV_CODEC_ID_SCPR_fuzzer: Heap-buffer-overflow in decompress_p

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6289698747056128 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDSCPRfuzzer Fuzz target binary: ffmpegAVCODECIDSCPRfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Cras...

imagemagick/encoder_pcd_fuzzer: Bad-free in RelinquishMagickMemory

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5645708947357696 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderpcdfuzzer Fuzz target binary: encoderpcdfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...

wireshark/fuzzshark_ip_proto-udp: Heap-buffer-overflow in print_address_prefix_buf

Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5676598553477120 Project: wireshark Fuzzer: libFuzzerwiresharkfuzzsharkipproto-udp Fuzz target binary: fuzzsharkipproto-udp Job Type: libfuzzerasanwireshark Platform Id: linux Crash Type:...

libreoffice/rasfuzzer: Heap-buffer-overflow in Color::GetBlue

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=4819351925424128 Project: libreoffice Fuzzer: libFuzzerlibreofficerasfuzzer Fuzz target binary: rasfuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...

libreoffice/pptfuzzer: Heap-use-after-free in SdrObject::RemoveListener

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=4585227016994816 Project: libreoffice Fuzzer: libFuzzerlibreofficepptfuzzer Fuzz target binary: pptfuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-use-after-fre...

libreoffice/pptfuzzer: Crash in __dynamic_cast

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=6566651324530688 Project: libreoffice Fuzzer: libFuzzerlibreofficepptfuzzer Fuzz target binary: pptfuzzer Job Type: libfuzzerubsanlibreoffice Platform Id: linux Crash Type: UNKNOWN READ Cras...

libreoffice/htmlfuzzer: Heap-use-after-free in SwTextFootnote::GetTextNode

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=4530720392347648 Project: libreoffice Fuzzer: libFuzzerlibreofficehtmlfuzzer Fuzz target binary: htmlfuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type:...

gdal/gtiff_fuzzer: Crash in _TIFFmemcpy

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6278268429795328 Project: gdal Fuzzer: libFuzzergdalgtifffuzzer Fuzz target binary: gtifffuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x625000042930 Crash...

imagemagick/encoder_mvg_fuzzer: Heap-buffer-overflow in TracePoint

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5617352352727040 Project: imagemagick Fuzzer: aflimagemagickencodermvgfuzzer Fuzz target binary: encodermvgfuzzer Job Type: aflasanimagemagick Platform Id: linux Crash Type:...

openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServiceTlv::GetServiceDataLength

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5433723441905664 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...

imagemagick/encoder_dpx_fuzzer: Use-of-uninitialized-value in ScaleQuantumToShort

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4880083551518720 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderdpxfuzzer Fuzz target binary: encoderdpxfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

Information disclosure

The Jenkins 2.73.1 and earlier, 2.83 and earlier remote API at /job/job-name/api contained information about upstream and downstream projects. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and...

mupdf/pdf_fuzzer: Use-of-uninitialized-value in jbig2_end_of_stripe

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=5247757901103104 Project: mupdf Fuzzer: libFuzzermupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanmupdf Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

imagemagick/encoder_pict_fuzzer: Use-of-uninitialized-value in ConstrainColormapIndex

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4577929079029760 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderpictfuzzer Fuzz target binary: encoderpictfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...