56 matches found
readstat/fuzz_format_sav: Heap-buffer-overflow in rt_read_handler
Project: https://github.com/WizardMac/ReadStat.git Detailed report: https://oss-fuzz.com/testcase?key=5656109291929600 Project: readstat Fuzzer: aflreadstatfuzzformatsav Fuzz target binary: fuzzformatsav Job Type: aflasanreadstat Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash...
readstat/fuzz_format_por: Index-out-of-bounds in read_missing_value_record
Project: https://github.com/WizardMac/ReadStat.git Detailed report: https://oss-fuzz.com/testcase?key=5652147318816768 Project: readstat Fuzzer: libFuzzerreadstatfuzzformatpor Fuzz target binary: fuzzformatpor Job Type: libfuzzerubsanreadstat Platform Id: linux Crash Type: Index-out-of-bounds Cra...
readstat/fuzz_format_xport: Heap-buffer-overflow in xport_construct_format
Project: https://github.com/WizardMac/ReadStat.git Detailed report: https://oss-fuzz.com/testcase?key=5175181067157504 Project: readstat Fuzzer: aflreadstatfuzzformatxport Fuzz target binary: fuzzformatxport Job Type: aflasanreadstat Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash...
readstat/fuzz_format_sas7bcat: Heap-buffer-overflow in readstat_convert
Project: https://github.com/WizardMac/ReadStat.git Detailed report: https://oss-fuzz.com/testcase?key=5673098437722112 Project: readstat Fuzzer: aflreadstatfuzzformatsas7bcat Fuzz target binary: fuzzformatsas7bcat Job Type: aflasanreadstat Platform Id: linux Crash Type: Heap-buffer-overflow READ ...
CVE-2018-11364
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...
Memory corruption
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...
Code injection
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
Resource Management Errors
Overview Affected versions of this package are vulnerable to Resource Management Errors savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call. Remediation There is no fixed version for readstat. References -...
Resource Management Errors
Overview Affected versions of this package are vulnerable to Resource Management Errors sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop. Remediation There is no fixed version for readstat. References - Github.com...
CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
CVE-2018-11364
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...
CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
UBUNTU-CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
DEBIAN-CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
UBUNTU-CVE-2018-11364
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...
DEBIAN-CVE-2018-11364
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...
CVE-2018-11364
CVE-2018-11364 affects ReadStat 0.1.1: the function sav_parse_machine_integer_info_record in spss/readstat_sav_read.c (libreadstat.a) has a memory leak linked to an iconv_open call. This vulnerability is documented across multiple feeds (NVD, OSV, Ubuntu, Debian, Nessus) with the same core descri...
CVE-2018-11365
sas/readstatsas7bcatread.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop...
CVE-2018-11364
savparsemachineintegerinforecord in spss/readstatsavread.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconvopen call...