553 matches found
mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex
Detailed Report: https://oss-fuzz.com/testcase?key=5111911572307968 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x7f0132daf848,0x999a189acc73fd41 and 0x62700000942...
arrow:parquet-arrow-fuzz: Negative-size-param in parquet::ColumnReaderImplBase<parquet::PhysicalType<
Project: https://github.com/apache/arrow.git Detailed Report: https://oss-fuzz.com/testcase?key=5761340172140544 Project: arrow Fuzzing Engine: libFuzzer Fuzz Target: parquet-arrow-fuzz Job Type: libfuzzerasanarrow Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...
mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex
Detailed Report: https://oss-fuzz.com/testcase?key=6322724899389440 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x7ff545cea848,0x2037ff447d7aa51 and 0x625000059913...
FockCache - Minimalized Test Cache Poisoning
FockCache - Minimalized Test Cache Poisoning Detail For Cache Poisoning : https://portswigger.net/research/practical-web-cache-poisoning FockCache FockCache tries to make cache poisoning by trying X-Forwarded-Host and X-Forwarded-Scheme headers on web pages. After successful result, it gives you ...
Command injection
A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 in the General.Time.NTP.Server parameter to the subC8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code...
njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to
Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5742835815153664 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x62500008b700,0x62500008b8...
CVE-2019-17558
Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset velocity/ directory or as a parameter. A user defined configset could contain renderable, potentially...
Stripo Inc: my.stripo.emai email verification bypassed and also create email templates
Summary: According to the Stripo.emai When the new user sign up Stripo.email allow to create email templates after the verification of the email of Your stripo account. Until your email get verified You are not able to create a email templates in your acc. User need to verified their email...
mysql-server:fuzz_real_query: Memcpy-param-overlap in cli_read_rows
Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5672257833926656 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...
njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to
Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5683698955714560 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x625000075b00,0x625000075c...
UBUNTU-CVE-2016-1000006
hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...
CVE-2019-17546
tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...
gdal:fgb_fuzzer: Negative-size-param in OGRSimpleCurve::setPoints
Project: https://github.com/OSGeo/gdal.git Detailed Report: https://oss-fuzz.com/testcase?key=5664944388833280 Project: gdal Fuzzing Engine: libFuzzer Fuzz Target: fgbfuzzer Job Type: libfuzzerasani386gdal Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...
mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex
Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5745581829390336 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...
imagemagick:encoder_heic_fuzzer: Memcpy-param-overlap in NAL_unit::set_data
Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5698815994101760 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderheicfuzzer Job Type: libfuzzerasani386imagemagick Platform Id: linux Crash Type: Memcpy-param-overlap Cras...
CVE-2019-17546
tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...
Integer overflow
tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...
CVE-2019-17546
tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...
CVE-2019-17546
tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...
gdal:fgb_fuzzer: Negative-size-param in OGRSimpleCurve::setPoints
Project: https://github.com/OSGeo/gdal.git Detailed Report: https://oss-fuzz.com/testcase?key=5676931189571584 Project: gdal Fuzzing Engine: libFuzzer Fuzz Target: fgbfuzzer Job Type: libfuzzerasani386gdal Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...