1698 matches found
gnutls: Heap-buffer-overflow in read_attribute
Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6667435805507584 Project: gnutls Fuzzer: libFuzzergnutlsopenpgpcertparserfuzzer Fuzz target binary: gnutlsopenpgpcertparserfuzzer Job Type: libfuzzerasangnutls Platform Id: linux...
libreoffice: Heap-buffer-overflow in BitmapReadAccess::GetColor
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4618630104875008 Project: libreoffice Fuzzer: libFuzzerlibreofficewmffuzzer Fuzz target binary: wmffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type...
expat: Use-of-uninitialized-value in _start
Project: https://github.com/libexpat/libexpat.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4717026396340224 Project: expat Fuzzer: libFuzzerexpatparsefuzzer Fuzz target binary: expatparsefuzzer Job Type: libfuzzermsanexpat Platform Id: linux Crash Type:...
gnutls: Heap-use-after-free in _gnutls_buffer_append_printf
Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6643160214142976 Project: gnutls Fuzzer: libFuzzergnutlsx509parserfuzzer Job Type: libfuzzerasangnutls Platform Id: linux Crash Type: Heap-use-after-free READ 2 Crash Address:...
lcms: Crash in NextCh
Project: https://github.com/mm2/Little-CMS.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6555791318319104 Project: lcms Fuzzer: libFuzzerlcmscmsIT8loadfuzzer Fuzz target binary: cmsIT8loadfuzzer Job Type: libfuzzerasanlcms Platform Id: linux Crash Type: UNKNOWN READ...
icu: Heap-buffer-overflow in utext_previous32_58
Project: https://github.com/unicode-org/icu.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5560648738013184 Project: icu Fuzzer: libFuzzericuucasemapfuzzer Fuzz target binary: ucasemapfuzzer Job Type: libfuzzerasanicu Platform Id: linux Crash Type: Heap-buffer-overflow...
libtsm: Global-buffer-overflow in vte_write_debug
Project: git://people.freedesktop.org/dvdhrm/libtsm Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5397754897498112 Target: libtsm Fuzzer: libFuzzerlibtsmfuzzer Fuzzer binary: libtsmfuzzer Job Type: libfuzzerasanlibtsm Platform Id: linux Crash Type: Global-buffer-overflow...
libjpeg-turbo: Crash in libjpeg_turbo_fuzzer
Project: https://github.com/libjpeg-turbo/libjpeg-turbo.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5850953135685632 Target: libjpeg-turbo Fuzzer: libFuzzerlibjpeg-turbolibjpegturbofuzzer Fuzzer binary: libjpegturbofuzzer Job Type: libfuzzerasanlibjpeg-turbo Platfor...
pcre2: Heap-buffer-overflow in read_repeat_counts
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4719096310530048 Fuzzer: libFuzzerpcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x603000000118 Crash State:...
Stack-buffer-overflow in parsed_skip
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4733278460313600 Fuzzer: libFuzzerpcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0x7fa2a5af0ed0 Crash State:...
Heap-buffer-overflow in find_minlength
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4881488118022144 Fuzzer: libFuzzerpcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x614000002c33 Crash State:...
Heap-buffer-overflow in archive_read_format_cpio_read_header
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4798906516897792 Fuzzer: libFuzzerlibarchivefuzzer Job Type: libfuzzerasanlibarchive Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address: 0x61900014e080 Crash State: archivereadformatcpioreadheader...
Stable Channel Update for Desktop
The stable channel has been updated to 53.0.2785.143 for Windows, Mac, and Linux. This will roll out over the coming days/weeks. Security Fixes and Rewards Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, Control Flow Integrity or LibFuzzer. Note: Access to bug...
Heap-buffer-overflow in xmlDictComputeFastKey
Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5086706067832832 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Job Type: libfuzzerasanlibxml2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
(size_t)BIO_write(in, buf, len) == len
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6308967940620288 Fuzzer: libFuzzer Job Type: libfuzzerasanopenssl Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: sizetBIOwritein, buf, len == len fuzzer::Fuzzer::ExecuteCallback fuzzer::Fuzzer::RunOne...
Stable Channel Update for Desktop
The stable channel has been updated to 52.0.2743.116 for Windows, Mac, and Linux. This will roll out over the coming days/weeks. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictio...
Stable Channel Update
The stable channel has been updated to 51.0.2704.79 for Windows, Mac, and Linux. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library th...
Vulnerability in OpenSSL - X509_ATTRIBUTE memory leak
When presented with a malformed X509ATTRIBUTE structure OpenSSL will leak memory. This structure is used by the PKCS7 and CMS routines so any application which reads PKCS7 or CMS data from untrusted sources is affected. SSL/TLS is not affected. Found by Adam Langley Google/BoringSSL using libFuzz...