OSV-2024-68 Heap-buffer-overflow in gsfdmx_probe_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66169 Crash type: Heap-buffer-overflow READ 3 Crash state: gsfdmxprobedata gffilterpidrawnew fileinprocess...

OSV-2024-66 Heap-buffer-overflow in mrb_memsearch

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66209 Crash type: Heap-buffer-overflow READ 8 Crash state: mrbmemsearch strconvertrange mrbstraref...

OSV-2024-65 Heap-buffer-overflow in mrb_memsearch

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66208 Crash type: Heap-buffer-overflow READ 8 Crash state: mrbmemsearch mrbstrsplitm mrbvmexec...

FreeBSD : OpenSSL -- Multiple vulnerabilities (10dee731-c069-11ee-9190-84a93843eb75)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 10dee731-c069-11ee-9190-84a93843eb75 advisory. - Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash...

OSV-2024-42 Heap-double-free in dwg_free_common_entity_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66111 Crash type: Heap-double-free Crash state: dwgfreecommonentitydata dwgfreePLANESURFACE dwgfreevariablenoclass...

OSV-2024-39 Heap-buffer-overflow in simdutf::westmere::implementation::convert_utf8_to_utf32

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66063 Crash type: Heap-buffer-overflow WRITE 16 Crash state: simdutf::westmere::implementation::convertutf8toutf32 roundtrip.cc...

OSV-2024-38 Heap-buffer-overflow in json_HEADER

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66046 Crash type: Heap-buffer-overflow WRITE 2 Crash state: jsonHEADER dwgreadjson llvmfuzz.c...

PT-2024-40745 · Git +1 · Simdutf

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap buffer overflow issue was identified, specifically a WRITE 16 error, which occurred in the simdutf::westmere::implementation::convert utf8 to utf3...

OSV-2024-36 Heap-use-after-free in LLVMFuzzerRunDriver

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65647 Crash type: Heap-use-after-free READ 4 Crash state: LLVMFuzzerRunDriver absl::ltsNUMBER::randominternal::InitDiscreteDistribution absl::ltsNUMBER::discretedistribution::paramtype::init...

OSV-2024-30 Heap-buffer-overflow in mrb_memsearch

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66000 Crash type: Heap-buffer-overflow READ 3 Crash state: mrbmemsearch mrbstrbyteindexm mrbvmexec...

SUSE SLED15: libopenssl-3-devel / libopenssl-3-devel-32bit / libopenssl3 / etc (SUSE-SU-2024:0172-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0172-1 advisory. - CVE-2023-6129: Fixed vector register clobbering on PowerPC. bsc1218690 - CVE-2023-6237: Fixed...

OSV-2024-28 Security exception in java.base/java.util.Arrays.copyOf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65930 Crash type: Security exception Crash state: java.base/java.util.Arrays.copyOf java.base/java.util.ArrayList.grow java.base/java.util.ArrayList.grow...

OSV-2024-24 Security exception in java.base/java.util.Arrays.copyOf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65740 Crash type: Security exception Crash state: java.base/java.util.Arrays.copyOf com.fasterxml.jackson.core.util.TextBuffer.expandCurrentSegment com.fasterxml.jackson.dataformat.cbor.CBORParser.finishShortText...

OSV-2024-22 Heap-use-after-free in ucl_hash_func

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65868 Crash type: Heap-use-after-free READ 8 Crash state: uclhashfunc khresizeuclhashnode khputuclhashnode...

OSV-2024-20 Heap-buffer-overflow in bam_aux_get

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65820 Crash type: Heap-buffer-overflow READ 1 Crash state: bamauxget processoneread cramencodecontainer...

OSV-2024-18 Heap-use-after-free in QPDF::read_xref

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65777 Crash type: Heap-use-after-free READ 8 Crash state: QPDF::readxref QPDF::reconstructxref QPDF::parse...

OSV-2024-17 Heap-use-after-free in iasecc_delete_file

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65684 Crash type: Heap-use-after-free READ 4 Crash state: iaseccdeletefile scdeletefile iaseccpkcs15deletefile...

OSV-2024-10 Heap-buffer-overflow in __string

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65632 Crash type: Heap-buffer-overflow READ 2 Crash state: string...

OSV-2024-9 Stack-buffer-overflow in _canonicalize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65635 Crash type: Stack-buffer-overflow READ Crash state: canonicalize ulocimpgetBaseName75 uresopenWithType...

OSV-2024-4 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65484 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/java.nio.CharBuffer.wrap java.base/sun.nio.cs.StreamEncoder.implWrite...