minizip:unzip_fuzzer: Stack-buffer-overflow in crc32_z

Project: https://github.com/nmoinvaz/minizip.git Detailed Report: https://oss-fuzz.com/testcase?key=5737646432452608 Project: minizip Fuzzing Engine: afl Fuzz Target: unzipfuzzer Job Type: aflasanminizip Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0x7ffe99ff1360 Cra...

binutils:fuzz_disassemble: Stack-buffer-overflow in bfd_put_bits

Detailed Report: https://oss-fuzz.com/testcase?key=5685956790452224 Project: binutils Fuzzing Engine: honggfuzz Fuzz Target: fuzzdisassemble Job Type: honggfuzzasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7fc07017e864 Crash State: bfdputbits...

libraw:libraw_fuzzer: Stack-buffer-overflow in __libcpp_strchr

Project: https://github.com/libraw/libraw.git Detailed Report: https://oss-fuzz.com/testcase?key=5640387220996096 Project: libraw Fuzzing Engine: honggfuzz Fuzz Target: librawfuzzer Job Type: honggfuzzasanlibraw Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7f5f52e128...

libraw:libraw_fuzzer: Stack-buffer-overflow in LibRaw_buffer_datastream::gets

Project: https://github.com/libraw/libraw.git Detailed Report: https://oss-fuzz.com/testcase?key=5070269470474240 Project: libraw Fuzzing Engine: libFuzzer Fuzz Target: librawfuzzer Job Type: libfuzzerasanlibraw Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address:...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in tcos_decipher

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5226571123392512 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address:...

pcapplusplus:FuzzTarget: Stack-buffer-overflow in pcpp::IDnsResource::decodeName

Project: https://github.com/seladb/PcapPlusPlus.git Detailed Report: https://oss-fuzz.com/testcase?key=5188876846235648 Project: pcapplusplus Fuzzing Engine: libFuzzer Fuzz Target: FuzzTarget Job Type: libfuzzerasanpcapplusplus Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash...

curl:curl_fuzzer_ftp: Stack-buffer-overflow in Curl_pp_readresp

Project: https://github.com/curl/curl.git Detailed Report: https://oss-fuzz.com/testcase?key=6613612490915840 Project: curl Fuzzing Engine: libFuzzer Fuzz Target: curlfuzzerftp Job Type: libfuzzerasancurl Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7ffe58b2ef40 Cra...

curl:curl_fuzzer_imap: Stack-buffer-overflow in Curl_pp_readresp

Project: https://github.com/curl/curl.git Detailed Report: https://oss-fuzz.com/testcase?key=5727799779524608 Project: curl Fuzzing Engine: honggfuzz Fuzz Target: curlfuzzerimap Job Type: honggfuzzasancurl Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7ffa0b94c420...

CVE-2020-1832

E6878-370 products with versions of 10.0.3.1H557SP27C233 and 10.0.3.1H563SP1C00 have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead ...

CVE-2020-1832

E6878-370 products with versions of 10.0.3.1H557SP27C233 and 10.0.3.1H563SP1C00 have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead ...

CVE-2020-1832

The CVE-2020-1832 issue affects Huawei E6878-370 routers (versions 10.0.3.1 with builds H557SP27C233 and H563SP1C00). The vulnerability is a stack buffer overflow caused by copying an input buffer to an output buffer without proper length verification, allowing an adjacent-network attacker to sen...

quickjs:fuzz_eval: Stack-buffer-overflow in get_class_atom

Project: https://github.com/horhof/quickjs.git https://github.com/bellard/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5071407886368768 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzeval Job Type: aflasanquickjs Platform Id: linux Crash Type: Stack-buffer-overflow WRITE ...

rdkit:smiles_string_to_mol_fuzzer: Stack-buffer-overflow in FindRings::findSSSRforDupCands

Project: https://github.com/rdkit/rdkit.git Detailed Report: https://oss-fuzz.com/testcase?key=5480444207562752 Project: rdkit Fuzzing Engine: afl Fuzz Target: smilesstringtomolfuzzer Job Type: aflasanrdkit Platform Id: linux Crash Type: Stack-buffer-overflow READ 8 Crash Address: 0x7ffe78642860...

dlplibs:wdbfuzzer: Stack-buffer-overflow in WPSEmbeddedObject::operator=

Detailed Report: https://oss-fuzz.com/testcase?key=5726414686126080 Project: dlplibs Fuzzing Engine: libFuzzer Fuzz Target: wdbfuzzer Job Type: libfuzzerasandlplibs Platform Id: linux Crash Type: Stack-buffer-overflow READ 8 Crash Address: 0x7ffeb240ead8 Crash State: WPSEmbeddedObject::operator=...

Security Advisory - Stack Buffer Overflow Vulnerability in Several Products

There is a stack buffer overflow vulnerability in several products. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead to stack buffer overflow which may cause malicious code...

mruby:mruby_fuzzer: Stack-buffer-overflow in fmt_setup

Project: https://github.com/mruby/mruby.git Detailed Report: https://oss-fuzz.com/testcase?key=5085564041953280 Project: mruby Fuzzing Engine: honggfuzz Fuzz Target: mrubyfuzzer Job Type: honggfuzzasanmruby Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7ffe4fea3241...

CentOS 7 : squid (RHSA-2020:2040)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2040 advisory. - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in coolkey_rsa_op

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5769032858075136 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address:...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4364-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4364-1 advisory. It was discovered that the ADIS16400 IIO IMU Driver for the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker...

Ubuntu: Security Advisory (USN-4364-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...