6506 matches found
OSV-2023-999 Heap-buffer-overflow in xmlParseCommentComplex
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63127 Crash type: Heap-buffer-overflow WRITE 1 Crash state: xmlParseCommentComplex xmlParseComment xmlParseMisc...
OSV-2023-993 Stack-buffer-overflow in entersafe_reverse_buffer
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63104 Crash type: Stack-buffer-overflow READ 1 Crash state: entersafereversebuffer entersafegenkey entersafecardctlNUMBER...
OSV-2023-990 Heap-use-after-free in __xmlRaiseError
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63092 Crash type: Heap-use-after-free READ 8 Crash state: xmlRaiseError xmlFatalErr xmlStringDecodeEntitiesInt...
OSV-2023-989 Heap-buffer-overflow in load_sections_64
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63074 Crash type: Heap-buffer-overflow READ Crash state: loadsections64 parseclasses64 classes...
OSV-2023-988 Heap-buffer-overflow in xmlCopyCharMultiByte
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63086 Crash type: Heap-buffer-overflow WRITE 1 Crash state: xmlCopyCharMultiByte xmlParseCommentComplex xmlParseComment...
OSV-2023-980 UNKNOWN READ in skip_chunk
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63051 Crash type: UNKNOWN READ Crash state: skipchunk httpcb fuzz.c...
OSV-2023-978 UNKNOWN READ in google::ParseTemplateArg
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63034 Crash type: UNKNOWN READ Crash state: google::ParseTemplateArg google::ParseTemplateArg google::ParseEncoding...
OSV-2023-976 Heap-buffer-overflow in Flow::dissectMDNS
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63060 Crash type: Heap-buffer-overflow READ 2 Crash state: Flow::dissectMDNS NetworkInterface::processPacket NetworkInterface::dissectPacket...
OSV-2023-974 UNKNOWN READ in r_str_ncpy
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63030 Crash type: UNKNOWN READ Crash state: rstrncpy Elf64loadsymbolsfrom Elf64loadsymbols...
OSV-2023-970 Heap-use-after-free in gx_device_forward_finalize
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63013 Crash type: Heap-use-after-free READ 8 Crash state: gxdeviceforwardfinalize gxdevicefinalize allocrestorestepin...
OSV-2023-969 Heap-use-after-free in xmlStaticCopyNode
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62996 Crash type: Heap-use-after-free READ 4 Crash state: xmlStaticCopyNode xmlDocCopyNode xmlParseReference...
OSV-2023-961 Security exception in java.base/java.util.Arrays.copyOf
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62959 Crash type: Security exception Crash state: java.base/java.util.Arrays.copyOf java.base/java.lang.AbstractStringBuilder.ensureCapacityInternal java.base/java.lang.AbstractStringBuilder.append...
OSV-2023-959 Heap-buffer-overflow in _dwarf_memcpy_noswap_bytes
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62943 Crash type: Heap-buffer-overflow READ 8 Crash state: dwarfmemcpynoswapbytes fillinuniarch64 dwarfmachosetup...
OSV-2023-957 Security exception in com.github.javaparser.ast.validator.TreeVisitorValidator.accept
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62967 Crash type: Security exception Crash state: com.github.javaparser.ast.validator.TreeVisitorValidator.accept com.github.javaparser.ast.expr.FieldAccessExpr.getMetaModel...
OSV-2023-955 Security exception in org.apache.poi.ddf.EscherPropertyFactory$$Lambda$285/ADDRESS.apply
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62924 Crash type: Security exception Crash state: org.apache.poi.ddf.EscherPropertyFactory$$Lambda$285/ADDRESS.apply org.apache.poi.ddf.EscherPropertyFactory.createProperties org.apache.poi.ddf.AbstractEscherOptRecord.fillFiel...
OSV-2023-953 Heap-buffer-overflow in xmlDictLookupInternal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62911 Crash type: Heap-buffer-overflow READ Crash state: xmlDictLookupInternal xmlDictLookup htmlParseNameComplex...
OSV-2023-948 Global-buffer-overflow in isvce_write_coeff4x4_cavlc
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62896 Crash type: Global-buffer-overflow READ 1 Crash state: isvcewritecoeff4x4cavlc isvceencoderesidue isvcewritepslicembcavlc...
OSV-2023-942 Security exception in com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62864 Crash type: Security exception Crash state: com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer java.base/sun.nio.cs.CESU8$Encoder.encodeArrayLoop java.base/sun.nio.cs.CESU8$Encoder.encodeLoo...
OSV-2023-930 Heap-buffer-overflow in OT::cvar::decompile_tuple_variations
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62774 Crash type: Heap-buffer-overflow READ 2 Crash state: OT::cvar::decompiletuplevariations OT::cvar::subset bool trysubset...
OSV-2023-920 Security exception in com.github.javaparser.GeneratedJavaParser.Expression
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62731 Crash type: Security exception Crash state: com.github.javaparser.GeneratedJavaParser.Expression java.base/sun.nio.cs.CESU8$Encoder.to3Bytes java.base/sun.nio.cs.CESU8$Encoder.encodeArrayLoop...