OSV-2023-1088 Heap-buffer-overflow in arrow::Status arrow::Result<std::__1::unique_ptr<arrow::Buffer, std::__1::defaul

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63679 Crash type: Heap-buffer-overflow WRITE 8 Crash state: arrow::Status arrow::Resultstd::1::uniqueptrarrow::Buffer, std::1::defaul arrow::ipc::ArrayLoader::GetBuffer arrow::ipc::ArrayLoader::Visit...

OSV-2021-503 Use-after-poison in std::__1::unique_ptr<SkSL::Expression, std::__1::default_delete<SkSL::Expression

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31765 Crash type: Use-after-poison READ 8 Crash state: std::1::uniqueptrSkSL::Expression, std::1::defaultdeleteSkSL::Expression SkSL::DefinitionMap::getKnownDefinition SkSL::VariableReference::constantPropagate...

skia:sksl2spirv: Segv on unknown address in std::__1::default_delete<SkSL::Statement>::operator

Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=4664685717356544 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: sksl2spirv Job Type: libfuzzermsanskia Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State:...

libreoffice/wksfuzzer: Heap-buffer-overflow in std::__1::unique_ptr<ScColumn, std::__1::default_delete<ScColumn> >::operator*

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5644717359890432 Project: libreoffice Fuzzer: libFuzzerlibreofficewksfuzzer Fuzz target binary: wksfuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...