21 matches found
OSV-2025-550 Use-of-uninitialized-value in CFF::cff2_cs_opset_t<cff2_cs_opset_subr_subset_t, CFF::subr_subset_param_t, CFF:
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=431867896 Crash type: Use-of-uninitialized-value Crash state: CFF::cff2csopsettcff2csopsetsubrsubsett, CFF::subrsubsetparamt, CFF: cff2csopsetsubrsubsett::processop CFF::subrsubsettertcff2subrsubsettert,...
CVE-2025-29476
Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...
OSV-2024-696 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70623 Crash type: Security exception Crash state: com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr java.base/sun.nio.cs.UTF8.updatePositions java.base/sun.nio.cs.UTF8$Encoder.encodeArrayLoop...
OSV-2023-705 Security exception in org.apache.lucene.util.automaton.RegExp.toAutomaton
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61493 Crash type: Security exception Crash state: org.apache.lucene.util.automaton.RegExp.toAutomaton java.base/java.util.BitSet.ensureCapacity java.base/java.util.BitSet.expandTo...
OSV-2022-1267 Memcpy-param-overlap in repeat
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55390 Crash type: Memcpy-param-overlap Crash state: repeat pere pere...
OSV-2022-422 UNKNOWN WRITE in alloc_restore_step_in
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47513 Crash type: UNKNOWN WRITE Crash state: allocrestorestepin allocrestoreall gsmainfinit...
A potential Denial of Service issue in protobuf-java
Summary A potential Denial of Service issue in protobuf-java was discovered in the parsing procedure for binary data. Affected versions: All versions of Java Protobufs including Kotlin and JRuby prior to the versions listed below. Protobuf "javalite" users typically Android are not affected...
OSV-2021-1326 Heap-buffer-overflow in my_ismbchar_utf8
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38923 Crash type: Heap-buffer-overflow READ 2 Crash state: myismbcharutf8 checkcolumnname getvariable...
CVE-2021-36976
libarchive 3.4.1 through 3.5.1 has a use-after-free in copystring called from douncompressblock and processblock...
OSV-2021-939 Segv on unknown address in helper_uc_tracecode
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35912 Crash type: Segv on unknown address Crash state: helpeructracecode...
OSV-2021-801 UNKNOWN READ in std::__1::__tree<std::__1::__value_type<Json::Value::CZString, Json::Value>, std
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34665 Crash type: UNKNOWN READ Crash state: std::1::tree, std std::1::mapJson::Value::CZString, Json::Value, std::1::lessJson::Value::CZ Json::Value::begin...
OSV-2020-1845 Stack-buffer-overflow in void put_epel_hv_fallback<unsigned short>
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25937 Crash type: Stack-buffer-overflow READ 2 Crash state: void putepelhvfallback accelerationfunctions::puthevcepelv void mcchroma...
OSV-2020-1613 Segv on unknown address in std::__1::deque<std::__1::deque<boost::variant<libetonyek::MoveTo, libetonyek::L
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24858 Crash type: Segv on unknown address Crash state: std::1::dequestd::1::dequeboost::variantlibetonyek::MoveTo, libetonyek::L libetonyek::IWORKPath::appendCCurveTo libetonyek::IWAParser::parsePath...
ndpi:fuzz_ndpi_reader: Heap-use-after-free in check_content_type_and_change_protocol
Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5161200102146048 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzndpireader Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Heap-use-after-free READ 2 Crash Address: 0x62b0000102df Cra...
OSV-2020-125 Negative-size-param in parquet::PlainByteArrayDecoder::DecodeArrowDense
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20669 Crash type: Negative-size-param Crash state: parquet::PlainByteArrayDecoder::DecodeArrowDense parquet::PlainByteArrayDecoder::DecodeArrow parquet::internal::ByteArrayChunkedRecordReader::ReadValuesSpaced...
OSV-2020-34 UNKNOWN READ in parquet::LevelDecoder::SetData
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20666 Crash type: UNKNOWN READ Crash state: parquet::LevelDecoder::SetData parquet::ColumnReaderImplBaseparquet::PhysicalType parquet::ColumnReaderImplBaseparquet::PhysicalType...
wireshark/fuzzshark_ip: Crash in except_pop
Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5667572477853696 Project: wireshark Fuzzer: libFuzzerwiresharkfuzzsharkip Fuzz target binary: fuzzsharkip Job Type: libfuzzerubsanwireshark Platform Id: linux Crash Type: UNKNOWN READ Crash...
libaom/av1_dec_fuzzer: Index-out-of-bounds in filter_selectively_horiz
Detailed report: https://oss-fuzz.com/testcase?key=5173013356478464 Project: libaom Fuzzer: libFuzzerlibaomav1decfuzzer Fuzz target binary: av1decfuzzer Job Type: libfuzzerubsanlibaom Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: filterselectivelyhoriz...
gdal/gdal_filesystem_fuzzer: Heap-buffer-overflow in VSIUnixStdioHandle::Read
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6701586108645376 Project: gdal Fuzzer: libFuzzergdalfilesystemfuzzer Fuzz target binary: gdalfilesystemfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash...
imagemagick/encoder_mvg_fuzzer: Use-of-uninitialized-value in TraceStrokePolygon
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5452606001381376 Project: imagemagick Fuzzer: libFuzzerimagemagickencodermvgfuzzer Fuzz target binary: encodermvgfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...