OSV-2022-375 Stack-use-after-return in std::__1::__function::__func<bool grk::WaveletReverse::decompress_partial_tile<i

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46986 Crash type: Stack-use-after-return READ 1 Crash state: std::1::function::funcbool grk::WaveletReverse::decompresspartialtilei tf::Executor::invoke tf::Executor::spawn...

OSV-2022-374 Stack-use-after-scope in RefCopyBytes

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47001 Crash type: Stack-use-after-scope READ Crash state: RefCopyBytes dngstream::Put tagdataptr::Put...

OSV-2022-330 Stack-use-after-return in std::__1::__function::__func<bool grk::WaveletReverse::decompress_partial_tile<i

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46575 Crash type: Stack-use-after-return READ 1 Crash state: std::1::function::funcbool grk::WaveletReverse::decompresspartialtilei tf::Executor::invoke tf::Executor::consumetask...

OSV-2022-321 Stack-use-after-scope in std::__1::__function::__func<bool grk::WaveletReverse::decompress_partial_tile<g

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46468 Crash type: Stack-use-after-scope WRITE 1 Crash state: std::1::function::funcbool grk::WaveletReverse::decompresspartialtileg tf::Executor::invoke tf::Executor::consumetask...

OSV-2022-268 Stack-use-after-return in template_sanity_check

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45880 Crash type: Stack-use-after-return READ 1 Crash state: templatesanitycheck processtmpl processblock...

OSV-2022-146 Stack-use-after-scope in tag_cfa_pattern::Put

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44590 Crash type: Stack-use-after-scope READ 1 Crash state: tagcfapattern::Put dngtiffdirectory::Put dngimagewriter::WriteTIFFWithProfile...

OSV-2021-1206 Stack-use-after-scope in uprv_stricmp_70

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38156 Crash type: Stack-use-after-scope READ 1 Crash state: uprvstricmp70 ulocimpgetLanguage70 canonicalize...

OSV-2021-1079 Stack-use-after-return in aio_bh_dequeue

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36690 Crash type: Stack-use-after-return READ 8 Crash state: aiobhdequeue aiobhpoll aiodispatch...

Solidity Buffer Overflow Vulnerability

Solidity is a high-level programming language. A security vulnerability exists in Solidity version 0.7.5 due to a stack-use-after-return in "smtutil::CHCSmtLib2Interface::querySolver".No details of the vulnerability are available at this time...

CVE-2020-36402

Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a code change...

CVE-2020-36402

Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a code change...

Code injection

Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a code change...

CVE-2020-36402

CVE-2020-36402 affects Solidity 0.7.5 with a stack-use-after-return in smtutil::CHCSmtLib2Interface::querySolver. Multiple sources describe the issue; OSV notes a so‑called fix field but states there is no corresponding code change. CVSSv3.1 base score 7.8 (HIGH) with LOCAL attack vector, no priv...

CVE-2020-36402

Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a code change...

Solidity 缓冲区错误漏洞

Solidity is a high-level programming language. A security vulnerability exists in Solidity version 0.7.5 due to a stack-use-after-return in "smtutil::CHCSmtLib2Interface::querySolver".No details of the vulnerability are available at this time...

OSV-2021-901 Stack-use-after-return in __readlink

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35565 Crash type: Stack-use-after-return WRITE 8 Crash state: readlink v9fscoreadlink v9fsreadlink...

OSV-2021-736 Stack-use-after-return in zend_fiber_suspend_context

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34013 Crash type: Stack-use-after-return READ 4 Crash state: zendfibersuspendcontext zendfibersuspend zimFibersuspend...

OSV-2021-668 Stack-use-after-return in pdf14_initialize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33529 Crash type: Stack-use-after-return WRITE 8 Crash state: pdf14initialize pdf14procsinitialize pdf14RGBinitialize...

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4907-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4907-1 advisory. Wen Xu discovered that the xfs file system implementation in the Linux kernel did not properly validate the number of extents in an inode. An...

OSV-2021-617 Stack-use-after-return in v9fs_setattr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32995 Crash type: Stack-use-after-return READ 4 Crash state: v9fssetattr coroutinetrampoline...