lzma/lzmaenc_fuzzer: Heap-buffer-overflow in OutputBuffer::Write

Detailed report: https://oss-fuzz.com/testcase?key=5641558126231552 Project: lzma Fuzzer: libFuzzerlzmalzmaencfuzzer Fuzz target binary: lzmaencfuzzer Job Type: libfuzzerasanlzma Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 12 Crash Address: 0x631000024800 Crash State:...

lzma/lzma2enc_fuzzer: Heap-buffer-overflow in OutputBuffer::Write

Detailed report: https://oss-fuzz.com/testcase?key=5186974492655616 Project: lzma Fuzzer: afllzmalzma2encfuzzer Fuzz target binary: lzma2encfuzzer Job Type: aflasanlzma Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address: 0x60c0000003c0 Crash State: OutputBuffer::Write...

ffmpeg/ffmpeg_AV_CODEC_ID_RSCC_fuzzer: Heap-buffer-overflow in inflate

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5734128093233152 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDRSCCfuzzer Fuzz target binary: ffmpegAVCODECIDRSCCfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash...

keystone/fuzz_asm_sparc64be: Crash in cfree

Project: https://github.com/keystone-engine/keystone.git Detailed report: https://oss-fuzz.com/testcase?key=5741753304350720 Project: keystone Fuzzer: libFuzzerkeystonefuzzasmsparc64be Fuzz target binary: fuzzasmsparc64be Job Type: libfuzzermsankeystone Platform Id: linux Crash Type: UNKNOWN READ...

openh264/decoder_fuzzer: Heap-use-after-free in WelsDec::MapColToList0

Project: https://github.com/cisco/openh264.git Detailed report: https://oss-fuzz.com/testcase?key=5651073894711296 Project: openh264 Fuzzer: libFuzzeropenh264decoderfuzzer Fuzz target binary: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: Heap-use-after-free READ 4...

php/php-fuzz-exif: Heap-buffer-overflow in exif_iif_add_value

Detailed report: https://oss-fuzz.com/testcase?key=5724097968865280 Project: php Fuzzer: aflphpphp-fuzz-exif Fuzz target binary: php-fuzz-exif Job Type: aflasanphp Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash Address: 0x60400002cbba Crash State: exifiifaddvalue exifiifaddtag...

systemd/fuzz-network-parser: Use-of-uninitialized-value in condition_test

Project: https://github.com/systemd/systemd.git Detailed report: https://oss-fuzz.com/testcase?key=5652461068484608 Project: systemd Fuzzer: libFuzzersystemdfuzz-network-parser Fuzz target binary: fuzz-network-parser Job Type: libfuzzermsansystemd Platform Id: linux Crash Type:...

ffmpeg/ffmpeg_AV_CODEC_ID_TIFF_fuzzer: Heap-buffer-overflow in ff_lzw_decode

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5754570929602560 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDTIFFfuzzer Fuzz target binary: ffmpegAVCODECIDTIFFfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Cra...

ffmpeg/ffmpeg_AV_CODEC_ID_HEVC_fuzzer: Crash in luma_intra_pred_mode

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5650370728034304 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDHEVCfuzzer Fuzz target binary: ffmpegAVCODECIDHEVCfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: UNKNOWN WRITE Crash...

imagemagick/encoder_gif_fuzzer: Heap-buffer-overflow in ParseEntities

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5678895015133184 Project: imagemagick Fuzzer: libFuzzerimagemagickencodergiffuzzer Fuzz target binary: encodergiffuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...

picotls/fuzz-asn1: Crash in ptls_asn1_validation_recursive

Project: https://github.com/h2o/picotls.git Detailed report: https://oss-fuzz.com/testcase?key=5688525536624640 Project: picotls Fuzzer: libFuzzerpicotlsfuzz-asn1 Fuzz target binary: fuzz-asn1 Job Type: libfuzzerasanpicotls Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x6190bebebf97...

libressl/asn1: Heap-buffer-overflow in ASN1_get_object

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5740695165337600 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

Google Chrome < M73 - Data Race in ExtensionsGuestViewMessageFilter Exploit

Google Chrome M73 - Data Race in ExtensionsGuestViewMessageFilter Exploit There appears to be a race condition in the destruction of the ExtensionsGuestViewMessageFilter if the ProcessIdToFilterMap is modified concurrently. See the comment in the code:...

skia/image_filter_deserialize: Heap-buffer-overflow in SkMatrix* SkRecorder::copy<SkMatrix>

Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5745406073372672 Project: skia Fuzzer: aflskiaimagefilterdeserialize Fuzz target binary: imagefilterdeserialize Job Type: aflasanskia Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash...

harfbuzz/hb-subset-fuzzer: Heap-buffer-overflow in BEInt<unsigned char, 1>::set

Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5760768497156096 Project: harfbuzz Fuzzer: libFuzzerharfbuzzhb-subset-fuzzer Fuzz target binary: hb-subset-fuzzer Job Type: libfuzzerasanharfbuzz Platform Id: linux Crash Type: Heap-buffer-overflo...

gdal/gdal_fuzzer: Heap-use-after-free in GDALDataset::Reference

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5764663096115200 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address: 0x6160000060...

perfetto/trace_processor_fuzzer: Crash in perfetto::trace_processor::ProtoTraceParser::ParseTypedFtraceToRaw

Project: https://android.googlesource.com/platform/external/perfetto/ Detailed report: https://oss-fuzz.com/testcase?key=5740416861732864 Project: perfetto Fuzzer: libFuzzerperfettotraceprocessorfuzzer Fuzz target binary: traceprocessorfuzzer Job Type: libfuzzerasanperfetto Platform Id: linux Cra...

radare2/ia_fuzz: Heap-use-after-free in sdb_free

Project: https://github.com/radare/radare2.git Detailed report: https://oss-fuzz.com/testcase?key=5637729364213760 Project: radare2 Fuzzer: libFuzzerradare2iafuzz Fuzz target binary: iafuzz Job Type: libfuzzerasanradare2 Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address:...

picotls/fuzz-server-hello: Heap-buffer-overflow in ptls_set_negotiated_protocol

Project: https://github.com/h2o/picotls.git Detailed report: https://oss-fuzz.com/testcase?key=5123788977471488 Project: picotls Fuzzer: libFuzzerpicotlsfuzz-server-hello Fuzz target binary: fuzz-server-hello Job Type: libfuzzerasanpicotls Platform Id: linux Crash Type: Heap-buffer-overflow READ...

imagemagick/encoder_mat_fuzzer: Heap-use-after-free in ReadImage

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5721754591297536 Project: imagemagick Fuzzer: libFuzzerimagemagickencodermatfuzzer Fuzz target binary: encodermatfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...