20 matches found
CLSA-2025-1747849358 Fix CVE(s): CVE-2024-10979
SECURITY UPDATE: Externally controlled reference to resources. - debian/patches/CVE-2024-10979.patch: Remove magic property of ENV in ./src/pl/plperl/plctrusted.pl. Add getenviron to ./src/test/regress/regress.c. - CVE-2024-10979...
matio:matio_fuzzer: Heap-buffer-overflow in Mat_int32Swap
Detailed Report: https://oss-fuzz.com/testcase?key=5769187560783872 Project: matio Fuzzing Engine: libFuzzer Fuzz Target: matiofuzzer Job Type: libfuzzerasani386matio Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0xf26fe87c Crash State: Matint32Swap ReadInt32DataInt32...
openvswitch:odp_target: Use-of-uninitialized-value in nl_attr_is_valid
Project: https://github.com/openvswitch/ovs.git Detailed Report: https://oss-fuzz.com/testcase?key=5135188606844928 Project: openvswitch Fuzzing Engine: libFuzzer Fuzz Target: odptarget Job Type: libfuzzermsanopenvswitch Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Cra...
ffmpeg:ffmpeg_AV_CODEC_ID_XMA2_fuzzer: Index-out-of-bounds in xma_decode_packet
Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5635373899710464 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegAVCODECIDXMA2fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash...
matio:matio_fuzzer: Crash in Mat_VarFree
Detailed Report: https://oss-fuzz.com/testcase?key=5752296985591808 Project: matio Fuzzing Engine: libFuzzer Fuzz Target: matiofuzzer Job Type: libfuzzerasani386matio Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0xbebebeae Crash State: MatVarFree matiofuzzer.cc Sanitizer: address...
wireshark:fuzzshark_ip_proto-udp: Crash in fuzzshark_ip_proto-udp
Project: https://code.wireshark.org/review/wireshark Detailed Report: https://oss-fuzz.com/testcase?key=5177656848416768 Project: wireshark Fuzzing Engine: libFuzzer Fuzz Target: fuzzsharkipproto-udp Job Type: libfuzzerubsanwireshark Platform Id: linux Crash Type: UNKNOWN READ Crash Address:...
ffmpeg/ffmpeg_AV_CODEC_ID_VORBIS_fuzzer: Crash in vorbis_floor0_decode
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5729191309344768 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDVORBISfuzzer Fuzz target binary: ffmpegAVCODECIDVORBISfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: UNKNOWN READ...
yara/dotnet_fuzzer: Heap-buffer-overflow in yr_object_set_string
Project: https://github.com/VirusTotal/yara.git Detailed report: https://oss-fuzz.com/testcase?key=5077612772196352 Project: yara Fuzzer: libFuzzeryaradotnetfuzzer Fuzz target binary: dotnetfuzzer Job Type: libfuzzerasanyara Platform Id: linux Crash Type: Heap-buffer-overflow READ 11 Crash Addres...
harfbuzz/hb-subset-fuzzer: Stack-use-after-return in bool OT::Coverage::serialize<hb_map_iter_t<hb_map_iter_t<hb_filter_iter_t<OT::Co
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5634197349203968 Project: harfbuzz Fuzzer: libFuzzerharfbuzzhb-subset-fuzzer Fuzz target binary: hb-subset-fuzzer Job Type: libfuzzerasanharfbuzz Platform Id: linux Crash Type:...
kimageformats/kimgio_fuzzer: Heap-use-after-free in void qDeleteAll<QHash<QString, KArchiveEntry*>::const_iterator>
Project: git://anongit.kde.org/kimageformats Detailed report: https://oss-fuzz.com/testcase?key=6207244191924224 Project: kimageformats Fuzzer: aflkimageformatskimgiofuzzer Fuzz target binary: kimgiofuzzer Job Type: aflasankimageformats Platform Id: linux Crash Type: Heap-use-after-free READ 8...
ffmpeg/ffmpeg_AV_CODEC_ID_AGM_fuzzer: Crash in copy_block8
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5649184864075776 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDAGMfuzzer Fuzz target binary: ffmpegAVCODECIDAGMfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: UNKNOWN Crash Address:...
harfbuzz/hb-shape-fuzzer: Crash in BEInt<int, 4>::operator int
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5695615258853376 Project: harfbuzz Fuzzer: aflharfbuzzhb-shape-fuzzer Fuzz target binary: hb-shape-fuzzer Job Type: aflasanharfbuzz Platform Id: linux Crash Type: UNKNOWN READ Crash Address:...
harfbuzz/hb-shape-fuzzer: Crash in BEInt<int, 4>::operator int
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5672261407735808 Project: harfbuzz Fuzzer: libFuzzerharfbuzzhb-shape-fuzzer Fuzz target binary: hb-shape-fuzzer Job Type: libfuzzerubsanharfbuzz Platform Id: linux Crash Type: UNKNOWN READ Crash...
libreoffice/xlsfuzzer: Container-overflow in ScDPResultDimension::LateInitFrom
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5694719535874048 Project: libreoffice Fuzzer: afllibreofficexlsfuzzer Fuzz target binary: xlsfuzzer Job Type: aflasanlibreoffice Platform Id: linux Crash Type: Container-overflow READ 4 Cras...
ffmpeg/ffmpeg_AV_CODEC_ID_SCPR_fuzzer: Heap-buffer-overflow in decompress_p
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6122458273808384 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDSCPRfuzzer Fuzz target binary: ffmpegAVCODECIDSCPRfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Cras...
imagemagick/encoder_palm_fuzzer: Use-of-uninitialized-value in IsFuzzyEquivalencePixelInfo
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4532840478801920 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderpalmfuzzer Fuzz target binary: encoderpalmfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...
gdal: Crash in CADHandle::CADHandle
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5237823683690496 Project: gdal Fuzzer: libFuzzergdalcadfuzzer Fuzz target binary: cadfuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x00000000e88e Crash...
dlplibs: Heap-buffer-overflow in librevenge::RVNGString::Iter::operator
Detailed report: https://oss-fuzz.com/testcase?key=6543365350883328 Project: dlplibs Fuzzer: libFuzzerdlplibsvsdfuzzer Fuzz target binary: vsdfuzzer Job Type: libfuzzerasandlplibs Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60a00000a818 Crash State:...
libass: Attempting free in reset_render_context
Project: https://github.com/libass/libass.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6213284067803136 Project: libass Fuzzer: libFuzzerlibassfuzzer Fuzz target binary: libassfuzzer Job Type: libfuzzerasanlibass Platform Id: linux Crash Type: Attempting free Crash...
Memory corruption
The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service crash via unknown vectors that trigger memory corruption, as demonstrated by...