OSV-2024-1182 Security exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=371233025 Crash type: Security exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec com.ctc.wstx.dtd.FullDTDReader.skipDtdWs com.ctc.wstx.dtd.FullDTDReader.readContentSpec...

OSV-2024-1154 Security exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=369974237 Crash type: Security exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec java.base/java.lang.ClassLoader.defineClass0 java.base/java.lang.System$2.defineClass...

OSV-2022-1196 Security exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53627 Crash type: Security exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec java.base/java.lang.Module.canRead java.base/sun.invoke.util.VerifyAccess.isModuleAccessible...

PT-2022-36781 · Oracle · Java.Base

Name of the Vulnerable Software and Affected Versions: java.base affected versions not specified Description: A security exception crash has been reported. The crash involves the com.ctc.wstx.dtd.FullDTDReader.readContentSpec function, java.base/java.lang.Module.canRead, and...

OSV-2022-962 Security exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51840 Crash type: Security exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec java.base/sun.nio.cs.CESU8.updatePositions java.base/sun.nio.cs.CESU8$Encoder.encodeArrayLoop...

PT-2022-37289 · Git +1 · Xstream

Name of the Vulnerable Software and Affected Versions: No specific software or version information is provided in the input descriptions. Description: A security exception crash has been reported, involving the com.ctc.wstx.dtd.FullDTDReader.readContentSpec function, which is related to reading...

PT-2022-37261 · Git +1 · Xstream

Name of the Vulnerable Software and Affected Versions: No specific software or version information is provided in the input description. Description: A security exception crash has been reported, involving the com.ctc.wstx.dtd.FullDTDReader.readContentSpec function, which interacts with...

OSV-2022-435 Uncaught exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47657 Crash type: Uncaught exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec java.base/java.lang.StringUTF16.checkBoundsOffCount java.base/java.lang.StringUTF16.getChars...

OSV-2022-431 Uncaught exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47616 Crash type: Uncaught exception Crash state: com.ctc.wstx.dtd.FullDTDReader.readContentSpec java.base/jdk.internal.org.objectweb.asm.SymbolTable$Entry. java.base/jdk.internal.org.objectweb.asm.SymbolTable.addConstantUtf8...