OSV-2024-930 Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70893 Crash type: Security exception Crash state: org.springframework.expression.spel.ast.OpPlus.getValueInternal java.base/sun.reflect.generics.reflectiveObjects.ParameterizedTypeImpl.hashCode...

OSV-2024-925 Index-out-of-bounds in derive_collocated_motion_vectors

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537038 Crash type: Index-out-of-bounds Crash state: derivecollocatedmotionvectors derivetemporallumavectorprediction getmergecandidatelistwithoutstep9...

OSV-2024-919 Heap-buffer-overflow in validate_relpath

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66547 Crash type: Heap-buffer-overflow READ 2 Crash state: validaterelpath loadmodulemeta fmodulemeta...

OSV-2024-914 UNKNOWN READ in boost::re_detail_500::basic_regex_formatter<std::__1::ostream_iterator<char, cha

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66851 Crash type: UNKNOWN READ Crash state: boost::redetail500::basicregexformatter boost::red...

OSV-2024-902 Security exception in org.json.JSONArray.writeTo

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69188 Crash type: Security exception Crash state: org.json.JSONArray.writeTo org.json.JSONStringer.value java.base/java.util.ArrayList.elementData...

OSV-2024-891 Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69936 Crash type: Security exception Crash state: org.springframework.expression.spel.ast.OpPlus.getValueInternal java.base/java.util.HashMap.get org.springframework.core.convert.TypeDescriptor.valueOf...

OSV-2024-883 Security exception in com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70999 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst java.base/java.util.stream.ReferencePipeline$3$1.accept...

OSV-2024-879 Security exception in java.base/java.util.Arrays.copyOf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537720 Crash type: Security exception Crash state: java.base/java.util.Arrays.copyOf java.base/java.lang.AbstractStringBuilder.ensureCapacityInternal java.base/java.lang.AbstractStringBuilder.append...

OSV-2024-868 Use-of-uninitialized-value in evutil_inet_pton

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69173 Crash type: Use-of-uninitialized-value Crash state: evutilinetpton bracketaddrok parseauthority...

OSV-2024-861 UNKNOWN READ in chunk_free_object

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537801 Crash type: UNKNOWN READ Crash state: chunkfreeobject gsmemorychunkunwrap gsjmemterm...

OSV-2024-852 UNKNOWN READ in jvp_object_free

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68618 Crash type: UNKNOWN READ Crash state: jvpobjectfree jvequal jvequal...

OSV-2024-847 Null-dereference READ in _libssh2_packet_add

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69234 Crash type: Null-dereference READ Crash state: libssh2packetadd fullpacket libssh2transportread...

OSV-2024-833 UNKNOWN READ in chunk_free_object

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70998 Crash type: UNKNOWN READ Crash state: chunkfreeobject sclose sfclose...

OSV-2024-832 UNKNOWN READ in Pistache::Http::Header::Expect::parseRaw

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69151 Crash type: UNKNOWN READ Crash state: Pistache::Http::Header::Expect::parseRaw Pistache::Http::Private::HeadersStep::apply Pistache::Http::Private::ParserBase::parse...

OSV-2024-831 Heap-buffer-overflow in jv_parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66929 Crash type: Heap-buffer-overflow READ 4 Crash state: jvparse ftonumber jqnext...

OSV-2024-830 UNKNOWN READ in ShadingImage::generateAxialBitmap

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68375 Crash type: UNKNOWN READ Crash state: ShadingImage::generateAxialBitmap ShadingImage::generateBitmap SplashOutputDev::shadedFill...

OSV-2024-817 Use-of-uninitialized-value in pcapint_filter_with_aux_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68862 Crash type: Use-of-uninitialized-value Crash state: pcapintfilterwithauxdata fuzzboth.c pcapintfilterwithauxdata...

OSV-2024-816 Use-of-uninitialized-value in pcpp::SSLClientHelloMessage::ClientHelloTLSFingerprint::toString

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69006 Crash type: Use-of-uninitialized-value Crash state: pcpp::SSLClientHelloMessage::ClientHelloTLSFingerprint::toString pcpp::SSLClientHelloMessage::ClientHelloTLSFingerprint::toStringAndMD5...

OSV-2024-812 Use-of-uninitialized-value in pcpp::PcapFileWriterDevice::writePacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68839 Crash type: Use-of-uninitialized-value Crash state: pcpp::PcapFileWriterDevice::writePacket FuzzWriter.cpp...

OSV-2024-805 Use-of-uninitialized-value in pcpp::NflogLayer::parseNextLayer

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537198 Crash type: Use-of-uninitialized-value Crash state: pcpp::NflogLayer::parseNextLayer pcpp::Packet::setRawPacket FuzzTarget.cpp...