CVE-2026-43058

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtvtsnullwriteinto and vidtvtspcrwriteinto take their argument structs by value, causing MSAN to report uninit-value warnings. While only vidtvtsnullwriteinto has...

CVE-2026-43058

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtvtsnullwriteinto and vidtvtspcrwriteinto take their argument structs by value, causing MSAN to report uninit-value warnings. While only vidtvtsnullwriteinto has...

CVE-2026-43058

The CVE covers a Linux kernel issue in media: vidtv where vidtv_ts_null_write_into() and vidtv_ts_pcr_write_into() take their argument structs by value, triggering MSAN warnings for uninitialized data. The root cause is stack-copy of the structs; the patch changes the functions to accept them by ...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of value-passing structures in the vidtvtsnullwriteinto and vidtvtspcrwriteinto functions...

Fedora 40 : php (2024-2b429e720e)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-2b429e720e advisory. PHP version 8.3.12 26 Sep 2024 CGI: Fixed bug GHSA-p99j-rfp4-xqvq Bypass of CVE-2024-4577, Parameter Injection Vulnerability. CVE-2024-8926 nielsdos...

Stable Channel Update for Desktop

The Stable channel has been updated to 121.0.6167.85 for Mac and Linux and 121.0.6167.85/.86 to Windows which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Security Fixes and Rewards Note: Access to bug details and links may be kept...

uwebsockets:PerMessageDeflate: Use-of-uninitialized-value in std::__1::__function::__func<LLVMFuzzerTestOneInput::$_0, std::__1::allocator<LL

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5726045371891712 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: PerMessageDeflate Job Type: libfuzzermsanuwebsockets Platform Id: linux Crash Type: Use-of-uninitialized-value...

grok:grk_decompress_fuzzer: Crash in grk::SparseBuffer<6u, 6u>::read_or_write

Detailed Report: https://oss-fuzz.com/testcase?key=5197905562173440 Project: grok Fuzzing Engine: libFuzzer Fuzz Target: grkdecompressfuzzer Job Type: libfuzzermsangrok Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000003c00 Crash State: grk::SparseBuffer::readorwrite...

libyal:libbde_volume_fuzzer: Use-of-uninitialized-value in libcaes_internal_context_set_encryption_key

Detailed Report: https://oss-fuzz.com/testcase?key=4805690566377472 Project: libyal Fuzzing Engine: libFuzzer Fuzz Target: libbdevolumefuzzer Job Type: libfuzzermsanlibyal Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: libcaesinternalcontextsetencryptionkey...

poppler:pdf_fuzzer: Use-of-uninitialized-value in rc4InitKey

Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed Report: https://oss-fuzz.com/testcase?key=5986356943388672 Project: poppler Fuzzing Engine: libFuzzer Fuzz Target: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...

imagemagick:enhance_fuzzer: Use-of-uninitialized-value in LibRaw::ljpeg_diff

Detailed Report: https://oss-fuzz.com/testcase?key=4761222404374528 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: enhancefuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: LibRaw::ljpegdiff...

suricata:fuzz_siginit: Use-of-uninitialized-value in DetectDatarepParse

Project: https://github.com/OISF/suricata.git Detailed Report: https://oss-fuzz.com/testcase?key=5762961148477440 Project: suricata Fuzzing Engine: libFuzzer Fuzz Target: fuzzsiginit Job Type: libfuzzermsansuricata Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

c-ares:ares_parse_reply_fuzzer: Use-of-uninitialized-value in ares_parse_caa_reply

Project: https://github.com/c-ares/c-ares.git Detailed Report: https://oss-fuzz.com/testcase?key=5149417215361024 Project: c-ares Fuzzing Engine: libFuzzer Fuzz Target: aresparsereplyfuzzer Job Type: libfuzzermsanc-ares Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Cras...

openh264:decoder_fuzzer: Crash in WelsCommon::WelsFree

Project: https://github.com/cisco/openh264.git Detailed Report: https://oss-fuzz.com/testcase?key=6195267555295232 Project: openh264 Fuzzing Engine: libFuzzer Fuzz Target: decoderfuzzer Job Type: libfuzzermsanopenh264 Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x7f981c8f0020 Crash...

grok:grk_decompress_fuzzer: Use-of-uninitialized-value in grk::TileProcessor::prepare_sod_decoding

Detailed Report: https://oss-fuzz.com/testcase?key=5154931768819712 Project: grok Fuzzing Engine: libFuzzer Fuzz Target: grkdecompressfuzzer Job Type: libfuzzermsangrok Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: grk::TileProcessor::preparesoddecoding...

imagemagick:encoder_heic_fuzzer: Use-of-uninitialized-value in transform_4x4_luma_add_8_fallback

Detailed Report: https://oss-fuzz.com/testcase?key=5691391462866944 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: transform4x4lumaadd8fallback...

libsndfile:sndfile_fuzzer: Nested bug in the same thread, aborting. with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=5087344745775104 Project: libsndfile Fuzzing Engine: libFuzzer Fuzz Target: sndfilefuzzer Job Type: libfuzzermsanlibsndfile Platform Id: linux Crash Type: Nested bug in the same thread, aborting. Crash Address: Crash State: NULL Sanitizer: memory...

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in find_zone_height

Detailed Report: https://oss-fuzz.com/testcase?key=5111576145952768 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: findzoneheight...

imagemagick:encoder_heic_fuzzer: Use-of-uninitialized-value in void transform_idct_add<unsigned char>

Detailed Report: https://oss-fuzz.com/testcase?key=4888325293604864 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: void transformidctadd...

libsndfile:sndfile_fuzzer: Use-of-uninitialized-value in endswap_int64_t_array

Detailed Report: https://oss-fuzz.com/testcase?key=5632785497456640 Project: libsndfile Fuzzing Engine: libFuzzer Fuzz Target: sndfilefuzzer Job Type: libfuzzermsanlibsndfile Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: endswapint64tarray endswapdoublearra...