6506 matches found
OSV-2023-905 Segv on unknown address in icu_74::UnicodeString::copyFrom
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62651 Crash type: Segv on unknown address Crash state: icu74::UnicodeString::copyFrom icu74::UnicodeString::UnicodeString icu74::number::impl::SimpleModifier::SimpleModifier...
OSV-2023-901 UNKNOWN READ in icu_74::RelativeDateTimeFormatter::formatRelativeImpl
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62601 Crash type: UNKNOWN READ Crash state: icu74::RelativeDateTimeFormatter::formatRelativeImpl icu74::FormattedRelativeDateTime icu74::RelativeDateTimeFormatter::doFormatToV icu74::RelativeDateTimeFormatter::formatToValue...
OSV-2023-899 Heap-buffer-overflow in cosm_create_key
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62613 Crash type: Heap-buffer-overflow READ 1 Crash state: cosmcreatekey scpkcs15initgeneratekey dogeneratekey...
PT-2023-36033 · Git +1 · Mongoose
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state includes functions such as deliver chunked chunks and http cb, which are located in...
OSV-2023-893 Heap-buffer-overflow in initialize_encryption_key
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62542 Crash type: Heap-buffer-overflow READ Crash state: initializeencryptionkey cliole2extract cliscanole2...
OSV-2023-890 Heap-use-after-free in dwarf_dealloc
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62547 Crash type: Heap-use-after-free READ 2 Crash state: dwarfdealloc dwarffdedestructor tdestroyfreenode...
OSV-2023-889 Heap-double-free in regcomp
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62529 Crash type: Heap-double-free Crash state: regcomp fileregcomp load1...
OSV-2023-885 UNKNOWN READ in bytes1_char_at
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62508 Crash type: UNKNOWN READ Crash state: bytes1charat asciiatlineend trymatch...
OSV-2023-883 Security exception in org.apache.lucene.util.ArrayUtil.copyOfSubArray
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62524 Crash type: Security exception Crash state: org.apache.lucene.util.ArrayUtil.copyOfSubArray org.apache.lucene.util.BytesRef.deepCopyOf org.apache.lucene.index.Term...
OSV-2023-881 Heap-buffer-overflow in read_tmpl
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62500 Crash type: Heap-buffer-overflow READ 1 Crash state: readtmpl mrbpackpack mrbvmexec...
OSV-2023-877 Heap-buffer-overflow in btf_ensure_modifiable
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62465 Crash type: Heap-buffer-overflow READ 4 Crash state: btfensuremodifiable btfaddvar bpfobjectcollectexterns...
OSV-2023-873 UNKNOWN WRITE in icu_74::Calendar::set
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62425 Crash type: UNKNOWN WRITE Crash state: icu74::Calendar::set calendarfuzzer.cpp...
OSV-2023-872 Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62457 Crash type: Security exception Crash state: org.springframework.expression.spel.ast.OpPlus.getValueInternal org.springframework.util.ConcurrentReferenceHashMap$Segment.restructureIfNecessa...
OSV-2023-869 Heap-buffer-overflow in Assimp::MD5::MD5MeshParser::MD5MeshParser
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62441 Crash type: Heap-buffer-overflow READ 1 Crash state: Assimp::MD5::MD5MeshParser::MD5MeshParser Assimp::MD5Importer::LoadMD5MeshFile Assimp::MD5Importer::InternReadFile...
OSV-2023-865 UNKNOWN in WasmEdge::Loader::SharedLibrary::load
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62387 Crash type: UNKNOWN Crash state: WasmEdge::Loader::SharedLibrary::load WasmEdge::Loader::Loader::loadModule WasmEdge::Loader::Loader::parseModule...
OSV-2023-862 Heap-use-after-free in g_datalist_get_flags
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62381 Crash type: Heap-use-after-free READ 8 Crash state: gdatalistgetflags gobjectunref gstobjectunref...
PT-2023-36017 · Git +1 · Mongoose
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash occurred due to a negative-size-param issue, as reported by OSS-Fuzz. The crash involves the http cb function in fuzz.c. Recommendations: At the moment, there is no information...
OSV-2023-855 Heap-double-free in dwg_free_common_entity_data
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62367 Crash type: Heap-double-free Crash state: dwgfreecommonentitydata dwgfreePOINTCLOUD dwgfreevariablenoclass...
OSV-2023-849 Stack-buffer-overflow in ulocimp_toLanguageTag_74
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62348 Crash type: Stack-buffer-overflow WRITE 1 Crash state: ulocimptoLanguageTag74 icu74::Locale::toLanguageTag localemorphfuzzer.cpp...
OSV-2023-844 Heap-buffer-overflow in Video::VP9::Decoder::create_video_frame
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62307 Crash type: Heap-buffer-overflow READ Crash state: Video::VP9::Decoder::createvideoframe Video::VP9::Decoder::decodeframe Video::VP9::Decoder::receivesample...