OSV-2020-1076 Stack-buffer-overflow in string_scan_range

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15467 Crash type: Stack-buffer-overflow WRITE 1 Crash state: stringscanrange getstringsrange rbinfilegetstrings...

OSV-2020-1046 Stack-buffer-overflow in sc_pkcs15emu_object_add

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19251 Crash type: Stack-buffer-overflow READ Crash state: scpkcs15emuobjectadd scpkcs15emucoolkeyinit scpkcs15emucoolkeyinitex...

OSV-2020-1019 Stack-buffer-overflow in getTLScertificate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19544 Crash type: Stack-buffer-overflow WRITE 6 Crash state: getTLScertificate tlsDetectProtocolFromCertificate ndpisearchtlstcpudp...

OSV-2020-993 Stack-buffer-overflow in write_png_comment

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16154 Crash type: Stack-buffer-overflow WRITE Crash state: writepngcomment vipsslistmap2 vipsimagemap...

OSV-2020-969 Stack-buffer-overflow in pgp_parse_algo_attr_blob

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19548 Crash type: Stack-buffer-overflow WRITE 4 Crash state: pgpparsealgoattrblob pgpgetcardfeatures pgpinit...

NewStart CGSL MAIN 6.01 : tigervnc Multiple Vulnerabilities (NS-SA-2020-0032)

The remote NewStart CGSL host, running version MAIN 6.01, has tigervnc packages installed that are affected by multiple vulnerabilities: - TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. If decoding...

wireshark:fuzzshark_ip: Stack-buffer-overflow in dissect_xcsl_tcp_heur

Project: https://code.wireshark.org/review/wireshark Detailed Report: https://oss-fuzz.com/testcase?key=6233603948937216 Project: wireshark Fuzzing Engine: afl Fuzz Target: fuzzsharkip Job Type: aflasanwireshark Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address:...

binutils:fuzz_readelf: Stack-buffer-overflow in print_dynamic_symbol

Detailed Report: https://oss-fuzz.com/testcase?key=5953247323095040 Project: binutils Fuzzing Engine: honggfuzz Fuzz Target: fuzzreadelf Job Type: honggfuzzasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7f67ff9a3340 Crash State: printdynamicsymbol...

OSV-2020-732 Stack-buffer-overflow in ot::MeshCoP::Leader::HandlePetition

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13537 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::Leader::HandlePetition ot::Coap::CoapBase::ProcessReceivedRequest ot::Ip6::Udp::HandleMessage...

OSV-2020-729 Stack-buffer-overflow in ot::MeshCoP::Leader::HandlePetition

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13335 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::Leader::HandlePetition ot::Coap::CoapBase::ProcessReceivedRequest ot::Ip6::Udp::HandleMessage...

OSV-2020-728 Stack-buffer-overflow in ot::Ip6::OptionPadN::Init

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14854 Crash type: Stack-buffer-overflow WRITE 9 Crash state: ot::Ip6::OptionPadN::Init ot::Ip6::Ip6::RemoveMplOption ot::Ip6::Ip6::ProcessReceiveCallback...

OSV-2020-721 Stack-buffer-overflow in ot::NetworkData::NetworkData::GetNextOnMeshPrefix

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13334 Crash type: Stack-buffer-overflow WRITE Crash state: ot::NetworkData::NetworkData::GetNextOnMeshPrefix ot::Dhcp6::Dhcp6Client::UpdateAddresses ot::Mle::Mle::HandleStateChanged...

OSV-2020-700 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15380 Crash type: Stack-buffer-overflow READ Crash state: ot::Message::Write ot::Message::Append ot::Mle::Mle::AppendResponse...

OSV-2020-672 Stack-buffer-overflow in ot::NetworkData::NetworkData::PrefixMatch

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13333 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::NetworkData::PrefixMatch ot::NetworkData::LeaderBase::GetContext ot::Mle::MleRouter::GetNeighbor...

OSV-2020-651 Stack-buffer-overflow in tvb_memcpy

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15936 Crash type: Stack-buffer-overflow WRITE Crash state: tvbmemcpy quicextractheader dissectquic...

OSV-2020-640 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15447 Crash type: Stack-buffer-overflow READ Crash state: ot::Message::Write ot::Message::Append ot::AddressResolver::SendAddressQueryResponse...

OSV-2020-530 Stack-buffer-overflow in ares_parse_aaaa_reply

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15459 Crash type: Stack-buffer-overflow WRITE 4 Crash state: aresparseaaaareply ares-test-fuzz.c...

OSV-2020-528 Stack-buffer-overflow in ot::Message::Read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17330 Crash type: Stack-buffer-overflow WRITE Crash state: ot::Message::Read ot::NetworkData::Leader::HandleCommissioningGet ot::Coap::CoapBase::ProcessReceivedRequest...

OSV-2020-531 Stack-buffer-overflow in ot::MeshCoP::DatasetManager::HandleSet

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15374 Crash type: Stack-buffer-overflow READ 15 Crash state: ot::MeshCoP::DatasetManager::HandleSet ot::MeshCoP::ActiveDataset::HandleSet ot::Coap::CoapBase::ProcessReceivedRequest...

OSV-2020-506 Stack-buffer-overflow in parse_file_extra_owner

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14331 Crash type: Stack-buffer-overflow WRITE 1 Crash state: parsefileextraowner processheadfileextra processheadfile...