EUVD-2020-23932

Malware in sbrugna...

EUVD-2020-23933

Malware in sbrugna...

CVE-2020-36404

Keystone Engine 0.9.2 has an invalid free in llvmks::SmallVectorImpl::SmallVectorImpl...

CVE-2020-36405

Keystone Engine 0.9.2 has a use-after-free in llvmks::X86Operand::getToken...

CVE-2020-36405

Keystone Engine 0.9.2 has a use-after-free in llvmks::X86Operand::getToken...

CVE-2020-36405

CVE-2020-36405 concerns Keystone Engine v0.9.2, where a use-after-free bug occurs in llvm_ks::X86Operand::getToken. The NVD entry reports a CVSS 3.1 base score of 7.8 (HIGH) with LOCAL attack vector, no privileges required, but user interaction required, and impacts on confidentiality, integrity,...

CVE-2020-36404

Keystone Engine 0.9.2 has an invalid free in llvmks::SmallVectorImpl::SmallVectorImpl...

CVE-2020-36404

CVE-2020-36404 affects Keystone Engine 0.9.2. Affected component: llvm_ks::SmallVectorImpl::~SmallVectorImpl (invalid free). Root cause: invalid free in destructor. Exploitation details are not provided in the supplied documents. No remediation/version fix is specified in the connected sources; n...

OSV-2021-398 Segv on unknown address in llvm_ks::StringRef::operator

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30932 Crash type: Segv on unknown address Crash state: llvmks::StringRef::operator llvmks::HashString llvmks::StringMapImpl::LookupBucketFor...

OSV-2021-365 Global-buffer-overflow in llvm_ks::StringRef::find_last_not_of

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30790 Crash type: Global-buffer-overflow READ 1 Crash state: llvmks::StringRef::findlastnotof llvmks::StringRef::rtrim llvmks::StringRef::trim...

OSV-2020-1506 Invalid-free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22371 Crash type: Invalid-free Crash state: llvmks::SmallVectorImpl::SmallVectorImpl llvmks::MCEncodedFragmentWithFixups::MCEncodedFragmentWithFixups llvmks::MCFragment::destroy...

OSV-2020-853 Use-of-uninitialized-value in llvm_ks::MCAssembler::computeFragmentSize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22482 Crash type: Use-of-uninitialized-value Crash state: llvmks::MCAssembler::computeFragmentSize llvmks::MCAsmLayout::layoutFragment llvmks::MCAsmLayout::ensureValid...

OSV-2020-827 Use-of-uninitialized-value in llvm_ks::isIntN

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22920 Crash type: Use-of-uninitialized-value Crash state: llvmks::isIntN X86AsmBackend::applyFixup llvmks::MCAssembler::layout...

OSV-2020-789 Heap-use-after-free in llvm_ks::X86Operand::getToken

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22850 Crash type: Heap-use-after-free READ 4 Crash state: llvmks::X86Operand::getToken X86AsmParser::MatchAndEmitATTInstruction X86AsmParser::MatchAndEmitInstruction...

keystone:fuzz_asm_x86_64: Use-of-uninitialized-value in llvm_ks::isIntN

Detailed Report: https://oss-fuzz.com/testcase?key=6316147845890048 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmx8664 Job Type: libfuzzermsankeystone Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: llvmks::isIntN X86AsmBackend::applyFixup...

keystone:fuzz_asm_arm_thumbbe: Use-of-uninitialized-value in llvm_ks::ARMAsmBackend::reasonForFixupRelaxation

Detailed Report: https://oss-fuzz.com/testcase?key=5454398435360768 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmarmthumbbe Job Type: libfuzzermsankeystone Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

keystone:fuzz_asm_x86_16: Heap-use-after-free in llvm_ks::X86Operand::getToken

Detailed Report: https://oss-fuzz.com/testcase?key=5637154293415936 Project: keystone Fuzzing Engine: afl Fuzz Target: fuzzasmx8616 Job Type: aflasankeystone Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address: 0x60d000000a28 Crash State: llvmks::X86Operand::getToken...

keystone:fuzz_asm_arm_arm: Use-of-uninitialized-value in llvm_ks::MCAssembler::computeFragmentSize

Detailed Report: https://oss-fuzz.com/testcase?key=5659471866232832 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmarmarm Job Type: libfuzzermsankeystone Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: llvmks::MCAssembler::computeFragmentSize...

keystone:fuzz_asm_sparc64be: Invalid-free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl

Detailed Report: https://oss-fuzz.com/testcase?key=5767140656545792 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmsparc64be Job Type: libfuzzerasankeystone Platform Id: linux Crash Type: Invalid-free Crash Address: 0x61900000059d Crash State:...

keystone:fuzz_asm_x86_64: Bad-cast to const llvm_ks::MCSectionELF from llvm_ks::MCSectionMachO in llvm_ks::MCELFStreamer::ChangeSection

Detailed Report: https://oss-fuzz.com/testcase?key=5733234540544000 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmx8664 Job Type: libfuzzerubsankeystone Platform Id: linux Crash Type: Bad-cast Crash Address: 0x000002a51160 Crash State: Bad-cast to const llvmks::MCSectionELF from...