jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service...

jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service...

jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service...

jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service...

OSV-2025-534 Heap-use-after-free in ih264_inter_pred_luma_horz_ssse3

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=428771938 Crash type: Heap-use-after-free READ 16 Crash state: ih264interpredlumahorzssse3 ih264dmotioncompensatemp isvcddecoderecontfrnmbnonbaselyr...

OSV-2025-528 Heap-buffer-overflow in xmlnode_parser_structural_error_libxml

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=429429092 Crash type: Heap-buffer-overflow WRITE 4 Crash state: xmlnodeparserstructuralerrorlibxml xmlRaiseError xmlParseAttValueInternal...

OSV-2025-525 UNKNOWN READ in std::__1::__function::__func<cv::PngDecoder::compose_frame

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=429429085 Crash type: UNKNOWN READ Crash state: std::1::function::funccv::PngDecoder::composeframe cv::ParallelLoopBodyWrapper::operator cv::ThreadPool::run...

PT-2025-34466 · Git · Clamav

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=428754704 Crash type: Invalid-free Crash state: pdf decodestream pdf extract obj cli pdf...

OSV-2025-500 UNKNOWN READ in getUShort

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=428022218 Crash type: UNKNOWN READ Crash state: getUShort disInstrTHUMBWRK disInstrARM...

OSV-2025-491 Heap-buffer-overflow in libssl.soNUMBER

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=427814448 Crash type: Heap-buffer-overflow READ 5 Crash state: libssl.soNUMBER libssl.soNUMBER SSLCTXsetcipherlist...

OSV-2025-486 Bad-cast to cv::PngDecoder from invalid vptr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426783958 Crash type: Bad-cast Crash state: Bad-cast to cv::PngDecoder from invalid vptr cv::PngDecoder::readData cv::imdecode...

OSV-2025-485 Use-of-uninitialized-value in pcpp::IDnsResource::decodeName

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426843906 Crash type: Use-of-uninitialized-value Crash state: pcpp::IDnsResource::decodeName pcpp::IDnsResource::IDnsResource pcpp::DnsLayer::parseResources...

OSV-2025-484 Heap-buffer-overflow in load_protocols_file_fd

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426164365 Crash type: Heap-buffer-overflow READ 2 Crash state: loadprotocolsfilefd fuzzfilecfgprotocols.c...

PT-2025-27677 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The issue is a heap-buffer-overflow READ vulnerability. The crash state indicates the vulnerability occurs within the load protocols file fd function in the...

OSV-2025-481 Stack-buffer-overflow in void glz::from<10000u, int>::op<glz::opts_csv{10000u,

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=425730091 Crash type: Stack-buffer-overflow READ 1 Crash state: void glz::from::op::op::opglz::optscsv10000u,...

OSV-2025-480 Stack-buffer-overflow in void glz::from<10000u, std::__1::__bit_reference<std::__1::vector<bool, std::__1

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=425725152 Crash type: Stack-buffer-overflow READ 1 Crash state: void glz::from::op::opglz::optscsv10000u,...

CVE-2022-49937

CVE-2022-49937 affects the Linux kernel mceusb driver in the media subsystem. Automatic fuzzing reported a WARN due to an unusual read on endpoint 0 caused by using legacy usb_control_msg_() routines and not setting USB_DIR_IN in bRequestType. The fix converts the driver to usb_control_msg_recv()...

OSV-2025-469 Use-of-uninitialized-value in ndpi_strdup

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=424653416 Crash type: Use-of-uninitialized-value Crash state: ndpistrdup ndpidetectionprocesspacket fuzzconfig.cpp...

OSV-2025-465 Heap-buffer-overflow in xmlParsePubidLiteral

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=424613315 Crash type: Heap-buffer-overflow WRITE 1 Crash state: xmlParsePubidLiteral xmlParseExternalID xmlParseNotationDecl...

PT-2025-26805 · Git +1 · Xmlsec

Name of the Vulnerable Software and Affected Versions: libxml2 affected versions not specified Description: The software is susceptible to a heap-buffer-overflow write issue. The crash state involves the functions xmlParsePubidLiteral, xmlParseExternalID, and xmlParseNotationDecl. Recommendations...