OSV-2023-251 Stack-buffer-overflow in ext11_work_out_bundles

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57494 Crash type: Stack-buffer-overflow WRITE 4 Crash state: ext11workoutbundles dissectorancsection dissectoran...

OSV-2023-117 Heap-buffer-overflow in isvcd_nal_byte_swap_emulation

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56386 Crash type: Heap-buffer-overflow WRITE 4 Crash state: isvcdnalbyteswapemulation isvcdnalparsenonvclnal isvcdpreparserefineau...

OSV-2022-303 Heap-use-after-free in start_pass_phuff_decoder

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46338 Crash type: Heap-use-after-free WRITE 4 Crash state: startpassphuffdecoder startinputpass jinitmasterdecompress...

OSV-2022-281 Heap-use-after-free in jsmn_parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45984 Crash type: Heap-use-after-free WRITE 4 Crash state: jsmnparse flbjsontokenise flbpackjsonstate...

OSV-2022-270 Stack-buffer-overflow in fn_ElIn_evaluate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45886 Crash type: Stack-buffer-overflow WRITE 4 Crash state: fnElInevaluate pdfisettransfer GSTR...

OSV-2022-180 Heap-buffer-overflow in row_mt_worker_hook

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44862 Crash type: Heap-buffer-overflow WRITE 4 Crash state: rowmtworkerhook threadloop...

OSV-2022-12 Heap-buffer-overflow in print_mac

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43304 Crash type: Heap-buffer-overflow WRITE 4 Crash state: printmac logpacket dhcpreply...

OSV-2021-482 Heap-buffer-overflow in draco::MeshPredictionSchemeTexCoordsDecoder<int, draco::PredictionSchemeWrapDeco

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31587 Crash type: Heap-buffer-overflow WRITE 4 Crash state: draco::MeshPredictionSchemeTexCoordsDecoderint, draco::PredictionSchemeWrapDeco draco::MeshPredictionSchemeTexCoordsDecoderint, draco::PredictionSchemeWrapDeco...

OSV-2021-229 Heap-buffer-overflow in cram_xpack_decode_init

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29827 Crash type: Heap-buffer-overflow WRITE 4 Crash state: cramxpackdecodeinit cramdecoderinit cramdecodecompressionheader...

OSV-2020-1855 Heap-buffer-overflow in WelsDec::UpdateP16x16MotionInfo

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25961 Crash type: Heap-buffer-overflow WRITE 4 Crash state: WelsDec::UpdateP16x16MotionInfo WelsDec::ParseInterPMotionInfoCabac WelsDec::WelsDecodeMbCabacPSliceBaseMode0...

OSV-2020-223 Heap-use-after-free in CRYPTO_DOWN_REF

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21550 Crash type: Heap-use-after-free WRITE 4 Crash state: CRYPTODOWNREF DHfree evppkeyfreelegacy...

OSV-2020-170 Heap-buffer-overflow in populate_relocs_record

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21850 Crash type: Heap-buffer-overflow WRITE 4 Crash state: populaterelocsrecord relocs rbinobjectsetitems...

sqlite3:ossfuzz: Heap-use-after-free in sqlite3VdbeAddFunctionCall

Detailed Report: https://oss-fuzz.com/testcase?key=5707309678592000 Project: sqlite3 Fuzzing Engine: libFuzzer Fuzz Target: ossfuzz Job Type: libfuzzerasani386sqlite3 Platform Id: linux Crash Type: Heap-use-after-free WRITE 4 Crash Address: 0xf4d37e80 Crash State: sqlite3VdbeAddFunctionCall...

libhevc:hevc_dec_fuzzer: Stack-buffer-overflow in ihevcd_ref_list

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5637475766108160 Project: libhevc Fuzzing Engine: afl Fuzz Target: hevcdecfuzzer Job Type: aflasanlibhevc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash...

matio:matio_fuzzer: Heap-buffer-overflow in Mat_VarRead4

Project: git://git.code.sf.net/p/matio/matio Detailed Report: https://oss-fuzz.com/testcase?key=5166851121741824 Project: matio Fuzzing Engine: libFuzzer Fuzz Target: matiofuzzer Job Type: libfuzzerasani386matio Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address: 0xf26ff550...

skia/android_codec: Heap-buffer-overflow in swizzle_index_to_n32

Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5755937772535808 Project: skia Fuzzer: aflskiaandroidcodec Fuzz target binary: androidcodec Job Type: aflasanskia Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address:...

skia/api_raster_n32_canvas: Heap-buffer-overflow in void SkMatrixConvolutionImageFilter::filterPixels<RepeatPixelFetcher, true>

Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5637330823020544 Project: skia Fuzzer: aflskiaapirastern32canvas Fuzz target binary: apirastern32canvas Job Type: aflasanskia Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Addres...

gdal: Heap-buffer-overflow in rdieee

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6389879183245312 Project: gdal Fuzzer: libFuzzergdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address: 0x60300000ce60 Crash State: rdieee...

ffmpeg: Heap-buffer-overflow in sbr_x_gen

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5075102901207040 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDAACfuzzer Fuzz target binary: ffmpegAVCODECIDAACfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash...