OSV-2024-801 UNKNOWN READ in PointerVector.h

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69391 Crash type: UNKNOWN READ Crash state: PointerVector.h...

OSV-2024-793 Heap-buffer-overflow in H5HL__fl_deserialize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68740 Crash type: Heap-buffer-overflow READ 1 Crash state: H5HLfldeserialize H5HLcachedatablockdeserialize H5Cprotect...

OSV-2024-777 Global-buffer-overflow in vte_write_debug

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68562 Crash type: Global-buffer-overflow READ 1 Crash state: vtewritedebug dotrans tsmvteinput...

OSV-2024-772 UNKNOWN READ in H5SL_search

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68989 Crash type: UNKNOWN READ Crash state: H5SLsearch H5FSsectremovereal H5FSsecttryextend...

PT-2024-40840 · Git +1 · Cups

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the cupsStrAlloc function, which is called by ippReadIO ...

OSV-2024-748 Security exception in com.github.javaparser.CommentsInserter.insertComments

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71032 Crash type: Security exception Crash state: com.github.javaparser.CommentsInserter.insertComments java.base/java.util.Objects.equals com.github.javaparser.Position.equals...

OSV-2024-747 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71083 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/java.nio.CharBuffer.wrap java.base/sun.nio.cs.StreamEncoder.implWrite...

PT-2024-40838 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a security exception, with details provided in an OSS-Fuzz report. The crash state involves methods such as...

OSV-2024-732 Security exception in com.github.javaparser.ast.visitor.VoidVisitorAdapter.lambda$visit$19

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71009 Crash type: Security exception Crash state: com.github.javaparser.ast.visitor.VoidVisitorAdapter.lambda$visit$19 java.base/java.util.ArrayList.forEach com.github.javaparser.ast.NodeList.forEach...

OSV-2024-728 Negative-size-param in pdf_resize_resource_arrays

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70967 Crash type: Negative-size-param Crash state: pdfresizeresourcearrays processcmaptext pdftextprocess...

OSV-2024-720 Security exception in jflex.core.NFA.insertNFA

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70964 Crash type: Security exception Crash state: jflex.core.NFA.insertNFA java.base/java.lang.ClassLoader.defineClass1 java.base/java.lang.ClassLoader.defineClass...

OSV-2024-719 Heap-buffer-overflow in hevc_ref_pic_lists_modification

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70890 Crash type: Heap-buffer-overflow WRITE 4 Crash state: hevcrefpiclistsmodification gfhevcparsenalubs gfinspectdumpnaluinternal...

OSV-2024-714 Segv on unknown address in lwan_request_get_cookie

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69572 Crash type: Segv on unknown address Crash state: lwanrequestgetcookie fuzzparsehttprequest...

PT-2024-40831 · Git +1 · Lwan

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by a segmentation fault on an unknown address. The crash occurs in the lwan request get cookie function, which is...

OSV-2024-711 Security exception in org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70826 Crash type: Security exception Crash state: org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext org.antlr.v4.runtime.misc.MurmurHash.update org.antlr.v4.runtime.misc.MurmurHash.update...

ASB-A-287184435

In sdpucompareuuidwithattr of sdputils.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

OSV-2024-698 Heap-use-after-free in xmlCharEncCloseFunc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70774 Crash type: Heap-use-after-free READ 4 Crash state: xmlCharEncCloseFunc htmlSaveFileFormat parseAndPrintFile...

OSV-2024-696 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70623 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/sun.nio.cs.UTF8.updatePositions java.base/sun.nio.cs.UTF8$Encoder.encodeArrayLoop...

OSV-2024-695 Stack-buffer-overflow in gf_vvc_parse_nalu_bs

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70549 Crash type: Stack-buffer-overflow WRITE 4 Crash state: gfvvcparsenalubs gfinspectdumpnaluinternal inspectprocess...

OSV-2024-680 Security exception in com.github.javaparser.GeneratedJavaParser.Expression

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69460 Crash type: Security exception Crash state: com.github.javaparser.GeneratedJavaParser.Expression java.base/java.lang.StringUTF16.compress java.base/java.lang.String...