OSV-2025-160 UNKNOWN WRITE in ndpi_free_flow_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398049422 Crash type: UNKNOWN WRITE Crash state: ndpifreeflowdata fuzzprocesspacket.c...

OSV-2025-156 Check failed in CheckUnwind

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398053003 Crash type: Check failed Crash state: CheckUnwind ndpifreeflowdata fuzzprocesspacket.c...

OSV-2025-149 UNKNOWN READ in processClientServerHello

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398049414 Crash type: UNKNOWN READ Crash state: processClientServerHello processTLSBlock ndpisearchtlsudp...

OSV-2025-148 Heap-buffer-overflow in setup_engineID

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398053010 Crash type: Heap-buffer-overflow WRITE 4 Crash state: setupengineID initsnmpv3postpremibconfig snmpcallcallbacks...

PT-2025-8700 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A crash occurred due to a check failure. The crash state includes CheckUnwind, ndpi free flow data, and is located in the fuzz process packet.c file. Recommendations: At the moment, there is...

OSV-2025-147 UNKNOWN WRITE in ndpi_free_flow_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=397731142 Crash type: UNKNOWN WRITE Crash state: ndpifreeflowdata ndpiflowfree processndpicollectedinfo...

OSV-2025-145 Heap-buffer-overflow in ___interceptor_strncat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=397731139 Crash type: Heap-buffer-overflow READ 1 Crash state: interceptorstrncat processndpicollectedinfo nodecleanupwalker...

kernel: xfrm: fix one more kernel-infoleak in algo dumping

A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...

Wireshark 4.2.x < 4.2.11 / 4.4.x < 4.4.4 DoS Vulnerability

The version of Wireshark installed on the remote Windows host is prior to 4.2.11 or 4.4.4. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.2.11 advisory. - The Bundle Protocol and CBOR dissectors could crash. Fixed in master: 83c73a83ad Fixed in release-4.4:...

Wireshark 4.2.x < 4.2.11 A Vulnerability (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.2.11. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.2.11 advisory. - The Bundle Protocol and CBOR dissectors could crash. Fixed in master: 83c73a83ad Fixed in release-4.4:...

OSV-2025-133 Stack-buffer-overflow in se_read_conf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396958482 Crash type: Stack-buffer-overflow READ 1 Crash state: sereadconf runconfighandler snmpconfigwhen...

OSV-2025-132 Heap-use-after-free in netsnmp_hex_to_binary

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396777457 Crash type: Heap-use-after-free READ 1 Crash state: netsnmphextobinary snmpv3parsearg netsnmpparseargs...

OSV-2025-131 Heap-buffer-overflow in vips_foreign_save_heif_write_block

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396460413 Crash type: Heap-buffer-overflow WRITE Crash state: vipsforeignsaveheifwriteblock wbufferwritethread vipsthreadsetwork...

OSV-2025-127 Object-size in unpack_dsd_samples

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396435326 Crash type: Object-size Crash state: unpackdsdsamples unpacksamplesworkerthread...

OSV-2025-119 Heap-buffer-overflow in snmp_config_when

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396102403 Crash type: Heap-buffer-overflow READ 1 Crash state: snmpconfigwhen netsnmpconfigprocessmemorylist readpremibconfigs...

OSV-2025-114 Index-out-of-bounds in ada_fuzz_header.h

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396172315 Crash type: Index-out-of-bounds Crash state: adafuzzheader.h...

PT-2025-7258 · Git +1 · Net-Snmp

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue is related to an index-out-of-bounds crash, as reported by OSS-Fuzz. The crash involves the ada fuzz header.h file. No information is available about the estimated number of...

OSV-2025-111 Stack-buffer-overflow in absl::debugging_internal::ParseLocalNameSuffix

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=395959258 Crash type: Stack-buffer-overflow WRITE 1 Crash state: absl::debugginginternal::ParseLocalNameSuffix absl::debugginginternal::ParseName absl::debugginginternal::ParseClassEnumType...

OSV-2022-1292 Heap-buffer-overflow in LibRaw::phase_one_correct

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=394920636 Crash type: Heap-buffer-overflow READ 2 Crash state: LibRaw::phaseonecorrect LibRaw::raw2imageex LibRaw::dcrawprocess...

OSV-2025-108 Use-of-uninitialized-value in decimate_dsd_run

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=395207096 Crash type: Use-of-uninitialized-value Crash state: decimatedsdrun WavpackUnpackSamples fuzzer.cc...