OSV-2020-496 Stack-buffer-overflow in ot::Mle::Mle::HandleParentResponse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15382 Crash type: Stack-buffer-overflow READ Crash state: ot::Mle::Mle::HandleParentResponse ot::Mle::Mle::HandleUdpReceive ot::Ip6::Udp::HandleMessage...

OSV-2020-491 Stack-buffer-overflow in Mat_VarReadNextInfo5

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17119 Crash type: Stack-buffer-overflow READ 4 Crash state: MatVarReadNextInfo5 MatGetDir MatioRead...

OSV-2020-468 Stack-buffer-overflow in ot::Ip6::Address::FromString

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14821 Crash type: Stack-buffer-overflow WRITE 1 Crash state: ot::Ip6::Address::FromString ot::Cli::Coap::ProcessRequest ot::Cli::Interpreter::ProcessCoap...

OSV-2020-471 Stack-buffer-overflow in ot::Cli::Interpreter::ProcessService

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12642 Crash type: Stack-buffer-overflow WRITE Crash state: ot::Cli::Interpreter::ProcessService ot::Cli::Interpreter::ProcessLine ot::Cli::Uart::ProcessCommand...

OSV-2020-413 Stack-buffer-overflow in ot::NetworkData::NetworkDataTlv::GetNext

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14401 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::NetworkDataTlv::GetNext ot::NetworkData::Leader::IsStableUpdated ot::NetworkData::Leader::RegisterNetworkData...

OSV-2020-427 Stack-buffer-overflow in Mat_uint32Swap

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17113 Crash type: Stack-buffer-overflow READ 4 Crash state: Matuint32Swap MatVarReadNextInfo5 MatGetDir...

OSV-2020-398 Stack-buffer-overflow in ihevcd_ref_list

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17029 Crash type: Stack-buffer-overflow WRITE 4 Crash state: ihevcdreflist ihevcdparsesliceheader ihevcdnalunit...

OSV-2020-405 Stack-buffer-overflow in ZSTD_decodeLiteralsBlock

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16445 Crash type: Stack-buffer-overflow WRITE Crash state: ZSTDdecodeLiteralsBlock ZSTDdecompressBlock ZSTDdecompressDCtx...

OSV-2020-383 Stack-buffer-overflow in ot::NetworkData::Leader::IsStableUpdated

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15971 Crash type: Stack-buffer-overflow READ 8 Crash state: ot::NetworkData::Leader::IsStableUpdated ot::NetworkData::Leader::RegisterNetworkData ot::NetworkData::Leader::HandleServerData...

OSV-2020-380 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13619 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask...

OSV-2020-392 Stack-buffer-overflow in nc4_get_att

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15143 Crash type: Stack-buffer-overflow WRITE Crash state: nc4getatt nc4getatttc ncgetatttext...

OSV-2020-353 Stack-buffer-overflow in ot::MeshCoP::Commissioner::GeneratePskc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19386 Crash type: Stack-buffer-overflow WRITE Crash state: ot::MeshCoP::Commissioner::GeneratePskc ot::Ncp::NcpBase::HandlePropertySetSPINELPROPMESHCOPCOMMISSIONERGENERATEPS ot::Ncp::NcpBase::HandlePropertySetForSpecialPropert...

OSV-2020-336 Stack-buffer-overflow in ot::NetworkData::PrefixTlv::Init

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12589 Crash type: Stack-buffer-overflow READ Crash state: ot::NetworkData::PrefixTlv::Init ot::NetworkData::Local::AddOnMeshPrefix otError ot::Ncp::NcpBase::HandlePropertyInsert...

OSV-2020-325 Stack-buffer-overflow in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15159 Crash type: Stack-buffer-overflow READ Crash state: std::1::basicstring, std::1::allocatorch nccfdriver::attrf nccfdriver::getCFVersion...

OSV-2020-305 Stack-buffer-overflow in ot::NetworkData::Leader::SendCommissioningGetResponse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17297 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::Leader::SendCommissioningGetResponse ot::NetworkData::Leader::HandleCommissioningGet ot::Coap::CoapBase::ProcessReceivedRequest...

OSV-2020-289 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17147 Crash type: Stack-buffer-overflow READ Crash state: ot::Message::Write ot::Message::Append ot::Mle::Mle::AppendNetworkData...

OSV-2020-258 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19338 Crash type: Stack-buffer-overflow READ 11 Crash state: ot::Message::Write ot::Message::Append ot::Mle::Mle::AppendResponse...

libfdk-aac:aacDecoder_DecodeFrame: Stack-buffer-overflow in Pred_lt4

Detailed Report: https://oss-fuzz.com/testcase?key=5697795251240960 Project: libfdk-aac Fuzzing Engine: libFuzzer Fuzz Target: aacDecoderDecodeFrame Job Type: libfuzzerasani386libfdk-aac Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0xfffcb3d4 Crash State: Predlt4...

DrayTek Vigor Stack Buffer Overflow (CVE-2020-10824; CVE-2020-10825)

A stack buffer overflow vulnerability exists in DrayTek Vigor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

DrayTek Vigor Stack Buffer Overflow (CVE-2020-10823)

A stack buffer overflow vulnerability exists in DrayTek Vigor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...