gdal: Index-out-of-bounds in OGRUKOOAP190Layer::GetNextRawFeature

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5003139549757440 Project: gdal Fuzzer: libFuzzergdalmitabmiffuzzer Fuzz target binary: mitabmiffuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash...

gdal: Heap-use-after-free in OGR_SRSNode::GetValue

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=4561956616798208 Project: gdal Fuzzer: aflgdalosrsetfromuserinputfuzzer Fuzz target binary: osrsetfromuserinputfuzzer Job Type: aflasangdal Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash...

ffmpeg: Index-out-of-bounds in decode_residual

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5693801463021568 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDH264fuzzer Fuzz target binary: ffmpegAVCODECIDH264fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...

wireshark: Index-out-of-bounds in dissect_radiotap

Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5493277962797056 Project: wireshark Fuzzer: libFuzzerwiresharkfuzzsharkip Fuzz target binary: fuzzsharkip Job Type: libfuzzerubsanwireshark Platform Id: linux Crash Type: Index-out-of-bounds...

gdal: Index-out-of-bounds in CPLHexToBinary

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5431926569566208 Project: gdal Fuzzer: libFuzzergdalshapefuzzer Fuzz target binary: shapefuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State:...

gdal: Heap-buffer-overflow in VFKReader::ReadDataRecords

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6279392739196928 Project: gdal Fuzzer: libFuzzergdalogrfuzzer Fuzz target binary: ogrfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

wireshark: Index-out-of-bounds in dissect_nbap_LogicalChannelID

Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=6547590764036096 Project: wireshark Fuzzer: libFuzzerwiresharkfuzzsharkip Fuzz target binary: fuzzsharkip Job Type: libfuzzerubsanwireshark Platform Id: linux Crash Type: Index-out-of-bounds...

gdal: Stack-buffer-overflow in OGRTigerDataSource::Open

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5658450124079104 Project: gdal Fuzzer: libFuzzergdalmitabtabfuzzer Fuzz target binary: mitabtabfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address:...

gdal: Heap-buffer-overflow in PackBitsDecode

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5296144668164096 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

ffmpeg: Global-buffer-overflow in decode_entropy_coded_image

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6535013757616128 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDWEBPfuzzer Fuzz target binary: ffmpegAVCODECIDWEBPfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Global-buffer-overflow READ 1...

gdal: Index-out-of-bounds in start_pass_huff_decoder

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6249814238953472 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State:...

file: Heap-buffer-overflow in mprint

Project: https://github.com/file/file.git Detailed report: https://oss-fuzz.com/testcase?key=6526587098890240 Project: file Fuzzer: libFuzzerfilemagicfuzzer Fuzz target binary: magicfuzzer Job Type: libfuzzerasanfile Platform Id: linux Crash Type: Heap-buffer-overflow READ 5 Crash Address:...

gnutls: Use-of-uninitialized-value in gnutls_ocsp_resp_get_status

Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://oss-fuzz.com/testcase?key=5280774389497856 Project: gnutls Fuzzer: libFuzzergnutlsocsprespparserfuzzer Fuzz target binary: gnutlsocsprespparserfuzzer Job Type: libfuzzermsangnutls Platform Id: linux Crash Type:...

ffmpeg: Index-out-of-bounds in dvbsub_parse_clut_segment

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5768907824562176 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDDVBSUBfuzzer Fuzz target binary: ffmpegAVCODECIDDVBSUBfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type:...

ffmpeg: Stack-buffer-overflow in color_string_to_rgba

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5961584419536896 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDXPMfuzzer Fuzz target binary: ffmpegAVCODECIDXPMfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Stack-buffer-overflow...

Google's OSS-Fuzz Finds 1,000 Open Source Bugs

The numbers are in, and judging by them, OSS-Fuzz, the program Google unveiled last December to continuously fuzz open source software, has been a success. In five months the effort has unearthed more than 1,000 bugs, a quarter of them potential security vulnerabilities, Google says. OSS-Fuzz,...

ffmpeg: Heap-buffer-overflow in vp8_decode_mb_row_no_filter

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6314998085189632 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDWEBPfuzzer Fuzz target binary: ffmpegAVCODECIDWEBPfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...

ffmpeg: Heap-buffer-overflow in chunky2chunky

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5020737339392000 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDCDXLfuzzer Fuzz target binary: ffmpegAVCODECIDCDXLfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...

dlplibs: Crash in librevenge::IStorage::load

Detailed report: https://oss-fuzz.com/testcase?key=5488429968130048 Project: dlplibs Fuzzer: afldlplibsbmifuzzer Fuzz target binary: bmifuzzer Job Type: aflasandlplibs Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x619800000f78 Crash State: librevenge::IStorage::load...

StringBleed: SNMP Protocol“God mode”vulnerability affects a variety of network devices-vulnerability warning-the black bar safety net

Recently, data from South America, two security researchers discovered that the SNMP（Simple Network Management Protocol the v1 and v2 version of the Protocol the presence of the authorized authentication and access control bypass vulnerability, at least 78 kinds of models of network access and Io...