EUVD-2018-4866

Malware in sbrugna...

OSV-2020-2242 Heap-buffer-overflow in tinfl_decompress

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28285 Crash type: Heap-buffer-overflow READ 1 Crash state: tinfldecompress mzinflate flbgzipuncompress...

OSV-2020-2151 Use-of-uninitialized-value in tinfl_decompress

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27413 Crash type: Use-of-uninitialized-value Crash state: tinfldecompress mzinflate mzuncompress2...

OSV-2020-2103 Use-of-uninitialized-value in tinfl_decompress

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26682 Crash type: Use-of-uninitialized-value Crash state: tinfldecompress mzinflate mzuncompress2...

c-blosc2:decompress_fuzzer: Heap-buffer-overflow in tinfl_decompress

Project: https://github.com/Blosc/c-blosc2.git Detailed Report: https://oss-fuzz.com/testcase?key=6033831129513984 Project: c-blosc2 Fuzzing Engine: libFuzzer Fuzz Target: decompressfuzzer Job Type: libfuzzerasani386c-blosc2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address...

c-blosc2:decompress_fuzzer: Heap-buffer-overflow in tinfl_decompress

Project: https://github.com/Blosc/c-blosc2.git Detailed Report: https://oss-fuzz.com/testcase?key=5120916286341120 Project: c-blosc2 Fuzzing Engine: libFuzzer Fuzz Target: decompressfuzzer Job Type: libfuzzerasanc-blosc2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

c-blosc2:decompress_fuzzer: Heap-buffer-overflow in tinfl_decompress

Project: https://github.com/Blosc/c-blosc2.git Detailed Report: https://oss-fuzz.com/testcase?key=5957965459488768 Project: c-blosc2 Fuzzing Engine: libFuzzer Fuzz Target: decompressfuzzer Job Type: libfuzzerasani386c-blosc2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address...

CVE-2018-12913

In Miniz 2.0.7, tinfldecompress in miniztinfl.c has an infinite loop because sym2 and counter can both remain equal to zero...

Miniz Infinite Loop Vulnerability

Miniz is a lossless compression library that implements the zlib RFC 1950 and Deflate RFC 1951 compressed data format specification standards. A security vulnerability exists in the 'tinfldecompress' function of the miniztinfl.c file in Miniz version 2.0.7, which stems from the fact that both sym...

CVE-2018-12913

In Miniz 2.0.7, tinfldecompress in miniztinfl.c has an infinite loop because sym2 and counter can both remain equal to zero...

CVE-2018-12913

In Miniz 2.0.7, tinfldecompress in miniztinfl.c has an infinite loop because sym2 and counter can both remain equal to zero...

Code injection

In Miniz 2.0.7, tinfldecompress in miniztinfl.c has an infinite loop because sym2 and counter can both remain equal to zero...

CVE-2018-12913

The vulnerability CVE-2018-12913 affects Miniz 2.0.7. The issue occurs in tinfl_decompress (miniz_tinfl.c) where an infinite loop can happen because sym2 and the counter can both remain 0. The connected documents provide the affected component and the root cause but do not specify a confirmed exp...

CVE-2018-12913

In Miniz 2.0.7, tinfldecompress in miniztinfl.c has an infinite loop because sym2 and counter can both remain equal to zero...