6506 matches found
OSV-2023-606 Heap-buffer-overflow in ZSTD_decompressMultiFrame
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60778 Crash type: Heap-buffer-overflow READ Crash state: ZSTDdecompressMultiFrame ZSTDdecompressusingDDict zstdwrapdecompress...
OSV-2023-604 Segv on unknown address in ucl_object_free_internal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60789 Crash type: Segv on unknown address Crash state: uclobjectfreeinternal uclparserfree ucladdstringfuzzer.c...
OSV-2023-599 Negative-size-param in passDoAction
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60723 Crash type: Negative-size-param Crash state: passDoAction translateString loutranslate...
OSV-2023-598 Heap-use-after-free in zval_call_destructor
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60734 Crash type: Heap-use-after-free READ 4 Crash state: zvalcalldestructor zendhashreverseapply shutdowndestructors...
OSV-2023-586 Heap-buffer-overflow in setcos_create_key
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60672 Crash type: Heap-buffer-overflow READ 1 Crash state: setcoscreatekey scpkcs15initgeneratekey dogeneratekey...
OSV-2023-583 Segv on unknown address in ucl_hash_destroy
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60678 Crash type: Segv on unknown address Crash state: uclhashdestroy uclobjectdtorunrefsingle uclobjectdtorunref...
OSV-2023-581 Heap-buffer-overflow in wwunpack
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60655 Crash type: Heap-buffer-overflow WRITE 1 Crash state: wwunpack cliscanpe climagicscan...
OSV-2023-580 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60640 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/java.lang.Exception. java.base/java.lang.RuntimeException...
OSV-2023-578 Heap-buffer-overflow in cosm_new_file
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60650 Crash type: Heap-buffer-overflow READ 1 Crash state: cosmnewfile cosmcreatekey scpkcs15initgeneratekey...
PT-2023-35911 · Git +1 · Opensc
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read, as indicated by an OSS-Fuzz report. The crash state involves several functions: cosm new file, cosm...
OSV-2023-573 Negative-size-param in check_content_type_and_change_protocol
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60605 Crash type: Negative-size-param Crash state: checkcontenttypeandchangeprotocol processresponse ndpicheckhttptcp...
OSV-2023-568 Memcpy-param-overlap in repeat
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60565 Crash type: Memcpy-param-overlap Crash state: repeat repeat pere...
OSV-2023-567 Stack-buffer-overflow in initialize_encryption_key
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60563 Crash type: Stack-buffer-overflow READ Crash state: initializeencryptionkey cliole2extract cliscanole2...
OSV-2023-566 Heap-buffer-overflow in check_content_type_and_change_protocol
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60557 Crash type: Heap-buffer-overflow READ 1 Crash state: checkcontenttypeandchangeprotocol processresponse ndpicheckhttptcp...
OSV-2023-562 Heap-buffer-overflow in llvm::DataLayout::getIndexedOffsetInType
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60538 Crash type: Heap-buffer-overflow READ 4 Crash state: llvm::DataLayout::getIndexedOffsetInType InterpreterStackFrame::ResolveConstantValue InterpreterStackFrame::EvaluateValue...
OSV-2023-555 Heap-buffer-overflow in Gfx::InputStreamer::read_u24
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60465 Crash type: Heap-buffer-overflow READ 1 Crash state: Gfx::InputStreamer::readu24 AK::Function Gfx::BMPImageDecoderPlugin::frame...
OSV-2023-554 Heap-buffer-overflow in OT::CmapSubtable::get_glyph
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60475 Crash type: Heap-buffer-overflow READ 2 Crash state: OT::CmapSubtable::getglyph bool OT::cmap::acceleratort::getglyphfrom hbotgetnominalglyphs...
OSV-2023-547 UNKNOWN READ in r_str_ncpy
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60407 Crash type: UNKNOWN READ Crash state: rstrncpy Elf32rbinelfloadsymbolsandimports Elf32loadsymbols...
OSV-2023-538 Heap-buffer-overflow in Gfx::BooleanDecoder::initialize
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60262 Crash type: Heap-buffer-overflow READ 7 Crash state: Gfx::BooleanDecoder::initialize Video::VP9::FrameContext::createrangedecoder Video::VP9::Parser::compressedheader...
OSV-2023-536 Heap-buffer-overflow in Assimp::MD5::MD5Parser::ParseHeader
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60274 Crash type: Heap-buffer-overflow READ 1 Crash state: Assimp::MD5::MD5Parser::ParseHeader Assimp::MD5::MD5Parser::MD5Parser Assimp::MD5Importer::LoadMD5MeshFile...