OSV-2024-328 Use-of-uninitialized-value in light_read_record

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68173 Crash type: Use-of-uninitialized-value Crash state: lightreadrecord lightpcapngopenread pcpp::PcapNgFileReaderDevice::open...

OSV-2024-326 Heap-buffer-overflow in GfxFont::readFontDescriptor

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68193 Crash type: Heap-buffer-overflow READ 1 Crash state: GfxFont::readFontDescriptor Gfx8BitFont::Gfx8BitFont GfxFont::makeFont...

OSV-2024-324 Use-of-uninitialized-value in do_callout_jit

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68365 Crash type: Use-of-uninitialized-value Crash state: docalloutjit jitmachinestackexec...

OSV-2024-323 Security exception in com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68346 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst java.base/java.util.stream.ReferencePipeline$3$1.accept...

OSV-2024-322 Container-overflow in strtol

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68322 Crash type: Container-overflow READ 3 Crash state: strtol Pistache::Http::Private::BodyStep::Chunk::parse Pistache::Http::Private::BodyStep::parseTransferEncoding...

OSV-2024-319 Stack-buffer-underflow in filter_apply_chain

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68328 Crash type: Stack-buffer-underflow READ 4 Crash state: filterapplychain filterapplychain initializeoutputfilters...

OSV-2024-314 Heap-buffer-overflow in config__add_listener

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68361 Crash type: Heap-buffer-overflow WRITE Crash state: configaddlistener configcreatedefaultlistener configreadfilecore...

OSV-2024-309 Use-of-uninitialized-value in fast_forward_first_n_chars

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66944 Crash type: Use-of-uninitialized-value Crash state: fastforwardfirstnchars jitcompile pcre2jitcompile8...

OSV-2024-294 Segv on unknown address in gx_device_forward_finalize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68051 Crash type: Segv on unknown address Crash state: gxdeviceforwardfinalize gxdevicefinalize pdf14devicefinalize...

PT-2024-40705 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A stack-buffer-overflow READ 1 crash was reported. The crash occurred in the shoco decompress function, located in the fuzz alg shoco.cpp file. No...

OSV-2024-288 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68181 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/sun.nio.cs.UTF8.updatePositions java.base/sun.nio.cs.UTF8$Encoder.encodeArrayLoop...

OSV-2024-278 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68092 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/java.nio.HeapCharBuffer. java.base/java.nio.CharBuffer.wrap...

OSV-2024-272 Heap-buffer-overflow in DDS_Security_Deserialize_ParticipantBuiltinTopicData

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68028 Crash type: Heap-buffer-overflow READ 2 Crash state: DDSSecurityDeserializeParticipantBuiltinTopicData fuzzsecuritydeser.c...

OSV-2024-269 Security exception in java.base/java.util.stream.AbstractPipeline.evaluate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66703 Crash type: Security exception Crash state: java.base/java.util.stream.AbstractPipeline.evaluate java.base/java.util.stream.ReferencePipeline.collect...

OSV-2024-267 Heap-buffer-overflow in SetDataFormat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68047 Crash type: Heap-buffer-overflow WRITE 8 Crash state: SetDataFormat ParseIT8 cmsIT8LoadFromMem...

CVE-2024-26903

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...

CVE-2024-26903

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...

CVE-2024-26903

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...

CVE-2024-26903 Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...

CVE-2024-26903 Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...