OSV-2024-265 Heap-buffer-overflow in Mat_VarDuplicate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68065 Crash type: Heap-buffer-overflow READ 8 Crash state: MatVarDuplicate MatioRead matiofuzzer.cpp...

OSV-2024-255 UNKNOWN READ

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66797 Crash type: UNKNOWN READ Crash state: NULL...

PT-2024-40693 · Git +1 · Tarantool

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ with a crash state of NULL, as reported by OSS-Fuzz. No additional details are provided about the...

OSV-2024-251 Heap-use-after-free in gx_device_forward_finalize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67932 Crash type: Heap-use-after-free READ 8 Crash state: gxdeviceforwardfinalize gxdevicefinalize gsgcreclaim...

OSV-2024-248 Security exception in com.github.javaparser.CommentsInserter.insertComments

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67850 Crash type: Security exception Crash state: com.github.javaparser.CommentsInserter.insertComments java.base/java.util.Objects.equals com.github.javaparser.Position.equals...

OSV-2024-246 UNKNOWN READ in ndpi_detection_process_packet

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67881 Crash type: UNKNOWN READ Crash state: ndpidetectionprocesspacket fuzzprocesspacket.c...

OSV-2024-245 Security exception in com.github.javaparser.ast.validator.TreeVisitorValidator.accept

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67672 Crash type: Security exception Crash state: com.github.javaparser.ast.validator.TreeVisitorValidator.accept com.github.javaparser.ast.expr.FieldAccessExpr.getMetaModel...

PT-2024-40689 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash was reported due to an unknown read issue. The crash occurred in the ndpi detection process packet function, which is located in the fuzz process...

Internet Bug Bounty: CVE-2019-1551: rsaz_512_sqr overflow bug on x86_64

The CVE-2019-1551 vulnerability was an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli in the OpenSSL library. The vulnerability was found and reported by researchers. The issue was mitigated in the 1.1.1 and 1.0.2 versions of OpenSSL...

CVE-2024-26794

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

OSV-2024-233 Use-of-uninitialized-value in WelsDec::CWelsDecoder::ReorderPicturesInDisplay

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66003 Crash type: Use-of-uninitialized-value Crash state: WelsDec::CWelsDecoder::ReorderPicturesInDisplay WelsDec::CWelsDecoder::DecodeFrame2WithCtx WelsDec::CWelsDecoder::DecodeFrame2...

OSV-2024-223 UNKNOWN READ in H5HG_read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67725 Crash type: UNKNOWN READ Crash state: H5HGread H5VLnativeblobget H5VLblobget...

OSV-2024-222 Security exception in co.nstant.in.cbor.CborDecoder.decodeNext

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67637 Crash type: Security exception Crash state: co.nstant.in.cbor.CborDecoder.decodeNext java.base/jdk.internal.misc.Unsafe.putByte jdk.unsupported/sun.misc.Unsafe.putByte...

OSV-2024-221 Heap-buffer-overflow in libspdm_copy_mem

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67585 Crash type: Heap-buffer-overflow READ 1 Crash state: libspdmcopymem libspdmgetresponsechunksend libspdmgetresponsechunksend...

OSV-2024-217 Heap-use-after-free in dropNode

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67670 Crash type: Heap-use-after-free READ 8 Crash state: dropNode api.c xmlFreeNodeList...

OSV-2024-204 Heap-use-after-free in JS_NewObjectFromShape

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65872 Crash type: Heap-use-after-free WRITE 8 Crash state: JSNewObjectFromShape jsparsetemplate jsparsepostfixexpr...

OSV-2024-198 Heap-use-after-free in xmlCopyPropInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67586 Crash type: Heap-use-after-free READ 8 Crash state: xmlCopyPropInternal xmlCopyPropList xmlStaticCopyNode...

OSV-2024-194 Heap-use-after-free in xmlDOMWrapNSNormAcquireNormalizedNs

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67560 Crash type: Heap-use-after-free READ 8 Crash state: xmlDOMWrapNSNormAcquireNormalizedNs xmlDOMWrapReconcileNamespaces api.c...

OSV-2024-193 Use-of-uninitialized-value in api.c

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67552 Crash type: Use-of-uninitialized-value Crash state: api.c xmlSearchNsByHref...

OSV-2024-189 Negative-size-param in vcf_parse_format

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67431 Crash type: Negative-size-param Crash state: vcfparseformat vcfparse bcfread...