6505 matches found
PT-2025-22245 · Git +1 · Rtpproxy
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software experiences a segmentation fault Segv on an unknown address during operation. The crash state involves the rtpp refcnt decref, hash table purge,...
PT-2025-22200 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential buffer read overflow issue has been identified in the Linux kernel, specifically in the libbpf component. The issue arises when accessing the BTF.ext core relo header witho...
OSV-2025-374 Use-of-uninitialized-value in pcpp::SomeIpSdEntry::SomeIpSdEntry
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=418036603 Crash type: Use-of-uninitialized-value Crash state: pcpp::SomeIpSdEntry::SomeIpSdEntry pcpp::SomeIpSdLayer::getEntries readParsedPacket...
OSV-2025-373 Heap-use-after-free in aiMesh::~aiMesh
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=417905428 Crash type: Heap-use-after-free READ 8 Crash state: aiMesh::aiMesh aiScene::aiScene Assimp::BaseProcess::ExecuteOnScene...
OSV-2025-371 Index-out-of-bounds in tcp_analyze_sequence_number
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=417518224 Crash type: Index-out-of-bounds Crash state: tcpanalyzesequencenumber dissecttcp calldissectorthroughhandle...
OSV-2025-369 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=417515043 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/sun.nio.cs.UTF8$Encoder.encodeArrayLoop java.base/sun.nio.cs.UTF8$Encoder.encodeLoop...
OSV-2025-368 Heap-buffer-overflow in __parse_options
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=417576708 Crash type: Heap-buffer-overflow READ 2 Crash state: parseoptions parseoptions parsebyblocktype...
PT-2025-21909 · Git +1 · Checkstyle
Name of the Vulnerable Software and Affected Versions: Checkstyle affected versions not specified Description: The software experiences a security exception during parsing of Java expressions within the com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr function. This occurs...
OSV-2025-363 Heap-buffer-overflow in jv_string_vfmt
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=417323384 Crash type: Heap-buffer-overflow READ 2 Crash state: jvstringvfmt jvstringfmt jvget...
PT-2025-23443 · Git +1 · Jq
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software suffers from a heap-buffer-overflow read issue. The crash occurs during the execution of the jv string vfmt, jv string fmt, and jv get functions...
OSV-2025-357 Segv on unknown address in pcpp::Packet::computeCalculateFields
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416808618 Crash type: Segv on unknown address Crash state: pcpp::Packet::computeCalculateFields FuzzTarget.cpp...
OSV-2025-354 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416762645 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement java.base/jdk.internal.misc.Unsafe.weakCompareAndSetInt...
PT-2025-21908 · Git +1 · Checkstyle
Name of the Vulnerable Software and Affected Versions: Checkstyle affected versions not specified Description: The software experiences a security exception during the parsing of Java statements within the com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement function. The cra...
OSV-2025-352 Use-of-uninitialized-value in JS_FreeRuntime
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416299802 Crash type: Use-of-uninitialized-value Crash state: JSFreeRuntime fuzzeval.c asyncfuncinit...
PT-2025-21907 · Git +1 · Quickjs
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software suffers from a use-of-uninitialized-value issue. The crash state involves JS FreeRuntime, occurring within fuzz eval.c during async func init...
OSV-2025-348 Security exception in org.apache.lucene.analysis.miscellaneous.ConcatenateGraphFilter$BytesRefBuilderT
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416302801 Crash type: Security exception Crash state: org.apache.lucene.analysis.miscellaneous.ConcatenateGraphFilter$BytesRefBuilderT org.apache.lucene.analysis.miscellaneous.ConcatenateGraphFilter$BytesRefBuilderT...
OSV-2025-346 Heap-buffer-overflow in JS_CallInternal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416298149 Crash type: Heap-buffer-overflow READ 1 Crash state: JSCallInternal JSEvalFunctionInternal JSEvalInternal...
An Empirical Study of Fuzz Harness Degradation
The purpose of continuous fuzzing platforms is to enable fuzzing for software projects via \emphfuzz harnesses -- but as the projects continue to evolve, are these harnesses updated in lockstep, or do they run out of date? If these harnesses remain unmaintained, will they \emphdegrade over time i...
PT-2025-21905 · Git +1 · Quickjs
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software suffers from a heap-buffer-overflow read issue. The crash occurs during JS CallInternal, JS EvalFunctionInternal, and JS EvalInternal function...
PT-2025-21906 · Git +1 · Lucene
Name of the Vulnerable Software and Affected Versions: Apache Lucene affected versions not specified Description: The software is susceptible to a security exception during the cloning of an AttributeSource$State object within the ConcatenateGraphFilter$BytesRefBuilderT class. The issue occurs wh...