5328 matches found
freetype2:truetype: Heap-double-free in woff2_open_font
Detailed Report: https://oss-fuzz.com/testcase?key=5637818264584192 Project: freetype2 Fuzzing Engine: libFuzzer Fuzz Target: truetype Job Type: libfuzzerasanfreetype2 Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x62c000000200 Crash State: woff2openfont sfntopenfont sfntinitfac...
libssh2:ssh2_client_fuzzer: Heap-buffer-overflow in kex_agree_methods
Project: https://github.com/cmeister2/libssh2.git Detailed Report: https://oss-fuzz.com/testcase?key=5129964331991040 Project: libssh2 Fuzzing Engine: libFuzzer Fuzz Target: ssh2clientfuzzer Job Type: libfuzzerasanlibssh2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
tidy-html5/tidy_fuzzer: Crash in GetSurrogatePair
Detailed report: https://oss-fuzz.com/testcase?key=5741081738608640 Project: tidy-html5 Fuzzer: libFuzzertidy-html5tidyfuzzer Fuzz target binary: tidyfuzzer Job Type: libfuzzerasantidy-html5 Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x604000010000 Crash State: GetSurrogatePair...
imagemagick/encoder_heic_fuzzer: Use-of-uninitialized-value in transform_4x4_luma_add_16_fallback
Detailed report: https://oss-fuzz.com/testcase?key=6276744838381568 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderheicfuzzer Fuzz target binary: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...
unrar/unrar_fuzzer: Index-out-of-bounds in Unpack::LongLZ
Project: https://github.com/aawc/unrar.git Detailed report: https://oss-fuzz.com/testcase?key=4683334295748608 Project: unrar Fuzzer: libFuzzerunrarfuzzer Fuzz target binary: unrarfuzzer Job Type: libfuzzerubsanunrar Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State:...
libreoffice/wmffuzzer: Heap-buffer-overflow in tools::Polygon emfio::EmfReader::ReadPolygon<short>
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=6236945156931584 Project: libreoffice Fuzzer: libFuzzerlibreofficewmffuzzer Fuzz target binary: wmffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...
file: Heap-buffer-overflow in cdf_getuint32
Project: https://github.com/file/file.git Detailed report: https://oss-fuzz.com/testcase?key=4879865188712448 Project: file Fuzzer: aflfilemagicfuzzer Fuzz target binary: magicfuzzer Job Type: aflasanfile Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x611000000280 Cra...
pcre2: Heap-buffer-overflow in match
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5329850650853376 Project: pcre2 Fuzzer: libFuzzerpcre2fuzzer Fuzz target binary: pcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...
libressl:client: Heap-buffer-overflow in x509_constraints_uri_host
Project: https://github.com/libressl-portable/portable.git Detailed Report: https://oss-fuzz.com/testcase?key=5703967370379264 Project: libressl Fuzzing Engine: afl Fuzz Target: client Job Type: aflasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x6020000005...
ndpi:fuzz_ndpi_reader: Nested bug in the same thread, aborting. with empty stacktrace
Detailed Report: https://oss-fuzz.com/testcase?key=5656304459448320 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzndpireader Job Type: libfuzzermsanndpi Platform Id: linux Crash Type: Nested bug in the same thread, aborting. Crash Address: Crash State: NULL Sanitizer: memory MSAN Crash...
skia:sksl2spirv: Heap-use-after-free in SkSL::VariableReference::~VariableReference
Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=4899879000997888 Project: skia Fuzzing Engine: afl Fuzz Target: sksl2spirv Job Type: aflasanskia Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address: 0x60e00002c218 Crash State:...
dav1d:dav1d_fuzzer: Null-dereference READ with empty stacktrace
Detailed Report: https://oss-fuzz.com/testcase?key=5670595304095744 Project: dav1d Fuzzing Engine: libFuzzer Fuzz Target: dav1dfuzzer Job Type: libfuzzerasandav1d Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: NULL Sanitizer: address ASAN Crash...
python3-libraries:fuzzer-decode: Heap-buffer-overflow in PyState_AddModule
Detailed Report: https://oss-fuzz.com/testcase?key=5723360180305920 Project: python3-libraries Fuzzing Engine: libFuzzer Fuzz Target: fuzzer-decode Job Type: libfuzzerasanpython3-libraries Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash Address: 0x60c000002880 Crash State:...
libvips:pngsave_buffer_fuzzer: Heap-buffer-overflow in IsHTML
Project: https://github.com/libvips/libvips.git Detailed report: https://oss-fuzz.com/testcase?key=5157921138147328 Project: libvips Fuzzing engine: libFuzzer Fuzz target: pngsavebufferfuzzer Job Type: libfuzzerasanlibvips Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
libvpx/vpx_dec_fuzzer_vp8: Crash in subpixel_ssse3.asm:1165
Project: https://chromium.googlesource.com/webm/libvpx Detailed report: https://oss-fuzz.com/testcase?key=5145943336288256 Project: libvpx Fuzzer: libFuzzerlibvpxvpxdecfuzzervp8 Fuzz target binary: vpxdecfuzzervp8 Job Type: libfuzzerasanlibvpx Platform Id: linux Crash Type: UNKNOWN READ Crash...
kimageformats/kimgio_fuzzer: Heap-use-after-free in KArchiveDirectory::addEntry
Project: git://anongit.kde.org/kimageformats Detailed report: https://oss-fuzz.com/testcase?key=5645496628019200 Project: kimageformats Fuzzer: aflkimageformatskimgiofuzzer Fuzz target binary: kimgiofuzzer Job Type: aflasankimageformats Platform Id: linux Crash Type: Heap-use-after-free READ 8...
net-snmp/snmp_pdu_parse_fuzzer: Heap-buffer-overflow in asn_parse_signed_int64
Project: git://git.code.sf.net/p/net-snmp/code Detailed report: https://oss-fuzz.com/testcase?key=6302021029199872 Project: net-snmp Fuzzer: aflnet-snmpsnmppduparsefuzzer Fuzz target binary: snmppduparsefuzzer Job Type: aflasannet-snmp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...
skia/image_filter_deserialize: Use-of-uninitialized-value in sk_store_bgra
Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=4728953316048896 Project: skia Fuzzer: libFuzzerskiaimagefilterdeserialize Fuzz target binary: imagefilterdeserialize Job Type: libfuzzermsanskia Platform Id: linux Crash Type:...
yara/macho_fuzzer: Use-of-uninitialized-value in macho_parse_file_32_be
Project: https://github.com/VirusTotal/yara.git Detailed report: https://oss-fuzz.com/testcase?key=5168348309487616 Project: yara Fuzzer: libFuzzeryaramachofuzzer Fuzz target binary: machofuzzer Job Type: libfuzzermsanyara Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address:...
wpantund: Crash in spinel_datatype_vunpack_
Project: https://github.com/openthread/wpantund.git Detailed report: https://oss-fuzz.com/testcase?key=6589685272936448 Project: wpantund Fuzzer: libFuzzerwpantundwpantund-fuzz Fuzz target binary: wpantund-fuzz Job Type: libfuzzerasanwpantund Platform Id: linux Crash Type: UNKNOWN READ Crash...
librawspeed: Bad-cast to rawspeed::RawDecoder from invalid vptr;rawspeed::RawDecoderDecodeThread;rawspeed::RawDecoder::startTasks
Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=4612305675354112 Project: librawspeed Fuzzer: libFuzzerlibrawspeedX3fParserFuzzer-GetDecoder-Decode Fuzz target binary: X3fParserFuzzer-GetDecoder-Decode Job Type: libfuzzerubsanlibrawspeed...
json: Heap-buffer-overflow in nlohmann::basic_json<std::__1::map, std::__1::vector, std::__1::basic_string<cha
Project: https://github.com/nlohmann/json.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5229771923390464 Project: json Fuzzer: libFuzzerjsonparsecborfuzzer Fuzz target binary: parsecborfuzzer Job Type: libfuzzerasanjson Platform Id: linux Crash Type:...
gnutls: Stack-buffer-overflow in cdk_pk_get_keyid
Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6746150208012288 Project: gnutls Fuzzer: libFuzzergnutlsopenpgpcertparserfuzzer Fuzz target binary: gnutlsopenpgpcertparserfuzzer Job Type: libfuzzerasangnutls Platform Id: linux...
llvm:clang-objc-fuzzer: Global-buffer-overflow in ProcessUCNEscape
Detailed Report: https://oss-fuzz.com/testcase?key=5085532385968128 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-objc-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Global-buffer-overflow READ 4 Crash Address: 0x00000ccfc3dc Crash State: ProcessUCNEscape...
mupdf:pdf_fuzzer: Crash in template_affine_N_near_fb0
Project: git://git.ghostscript.com/mupdf.git Detailed Report: https://oss-fuzz.com/testcase?key=4867473373134848 Project: mupdf Fuzzing Engine: honggfuzz Fuzz Target: pdffuzzer Job Type: honggfuzzasanmupdf Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x7ff23addb19e Crash State:...
qemu:qemu-fuzz-i386-target-generic-fuzz-xhci: Index-out-of-bounds in xhci_runtime_write
Detailed Report: https://oss-fuzz.com/testcase?key=5747786781556736 Project: qemu Fuzzing Engine: libFuzzer Fuzz Target: qemu-fuzz-i386-target-generic-fuzz-xhci Job Type: libfuzzerubsanqemu Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: xhciruntimewrite...
skia:sksl2metal: Heap-use-after-free in std::__1::default_delete<SkSL::Symbol const>::operator
Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=5725747140100096 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: sksl2metal Job Type: libfuzzerasanskia Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address: 0x7fec30211960...
arrow:parquet-arrow-fuzz: Heap-buffer-overflow in parquet::SerializedPageReader::DecompressIfNeeded
Project: https://github.com/apache/arrow.git Detailed Report: https://oss-fuzz.com/testcase?key=5086499571499008 Project: arrow Fuzzing Engine: libFuzzer Fuzz Target: parquet-arrow-fuzz Job Type: libfuzzerasanarrow Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...
openexr:openexr_scanlines_fuzzer: Segv on unknown address with empty stacktrace
Detailed Report: https://oss-fuzz.com/testcase?key=4721411661496320 Project: openexr Fuzzing Engine: libFuzzer Fuzz Target: openexrscanlinesfuzzer Job Type: libfuzzerasanopenexr Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: NULL Sanitizer: address ASAN Crash...
ffmpeg:ffmpeg_AV_CODEC_ID_COOK_fuzzer: Heap-buffer-overflow in cook_decode_init
Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5762459498184704 Project: ffmpeg Fuzzing Engine: honggfuzz Fuzz Target: ffmpegAVCODECIDCOOKfuzzer Job Type: honggfuzzasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address:...
immer:flex-vector-gc: Segv on unknown address in immer::detail::rbts::relaxed_pos<immer::detail::rbts::node<int, immer::memory_po
Project: https://github.com/arximboldi/immer.git Detailed Report: https://oss-fuzz.com/testcase?key=4872518268354560 Project: immer Fuzzing Engine: libFuzzer Fuzz Target: flex-vector-gc Job Type: libfuzzerasanimmer Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State:...
libreoffice:ww8fuzzer: Index-out-of-bounds in WW8ListManager::ReadLVL
Project: git://anongit.freedesktop.org/libreoffice/core Detailed Report: https://oss-fuzz.com/testcase?key=5733197544161280 Project: libreoffice Fuzzing Engine: libFuzzer Fuzz Target: ww8fuzzer Job Type: libfuzzerubsanlibreoffice Platform Id: linux Crash Type: Index-out-of-bounds Crash Address:...
monero:cold-transaction_fuzz_tests: Heap-buffer-overflow in std::__1::enable_if<boost::archive::portable_binary_iarchive::is_loading::value,
Project: https://github.com/monero-project/monero.git Detailed Report: https://oss-fuzz.com/testcase?key=5203144052310016 Project: monero Fuzzing Engine: libFuzzer Fuzz Target: cold-transactionfuzztests Job Type: libfuzzerasanmonero Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash...
pcapplusplus:FuzzTarget: Use-of-uninitialized-value in pcpp::HeaderField::HeaderField
Project: https://github.com/seladb/PcapPlusPlus.git Detailed Report: https://oss-fuzz.com/testcase?key=4923398479413248 Project: pcapplusplus Fuzzing Engine: libFuzzer Fuzz Target: FuzzTarget Job Type: libfuzzermsanpcapplusplus Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...
libspng:spng_read_fuzzer: Heap-double-free in spng__free
Project: https://gitlab.com/randy408/libspng.git https://github.com/randy408/libspng.git Detailed Report: https://oss-fuzz.com/testcase?key=6554438277005312 Project: libspng Fuzzing Engine: libFuzzer Fuzz Target: spngreadfuzzer Job Type: libfuzzerasanlibspng Platform Id: linux Crash Type:...
ndpi:fuzz_ndpi_reader: Segv on unknown address in ndpi_strdup
Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5174391532158976 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzndpireader Job Type: libfuzzermsanndpi Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: ndpistrd...
imagemagick:encoder_heic_fuzzer: Use-of-uninitialized-value in clip
Detailed Report: https://oss-fuzz.com/testcase?key=5758254161592320 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: clip...
libavif:avif_decode_fuzzer: Heap-buffer-overflow in dav1dFeedData
Project: https://github.com/AOMediaCodec/libavif.git Detailed Report: https://oss-fuzz.com/testcase?key=5631949457850368 Project: libavif Fuzzing Engine: libFuzzer Fuzz Target: avifdecodefuzzer Job Type: libfuzzerasanlibavif Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...
unicorn:fuzz_emu_arm_armbe: Global-buffer-overflow in cpu_loop_exit_armeb
Project: https://github.com/unicorn-engine/unicorn.git Detailed Report: https://oss-fuzz.com/testcase?key=5721703458275328 Project: unicorn Fuzzing Engine: honggfuzz Fuzz Target: fuzzemuarmarmbe Job Type: honggfuzzasanunicorn Platform Id: linux Crash Type: Global-buffer-overflow WRITE 8 Crash...
llvm:clang-fuzzer: Segv on unknown address in clang::Sema::EnterDeclaratorContext
Detailed Report: https://oss-fuzz.com/testcase?key=6244001741275136 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Sema::EnterDeclaratorContext...
harfbuzz:hb-subset-fuzzer: Heap-buffer-overflow in BEInt<unsigned short, 2>::operator unsigned short
Project: https://github.com/harfbuzz/harfbuzz.git Detailed Report: https://oss-fuzz.com/testcase?key=5715299773186048 Project: harfbuzz Fuzzing Engine: libFuzzer Fuzz Target: hb-subset-fuzzer Job Type: libfuzzerasanharfbuzz Platform Id: linux Crash Type: Heap-buffer-overflow READ 2 Crash Address:...
osquery:osqueryfuzz-config: Crash in bool rapidjson::GenericValue<rapidjson::UTF8<char>, rapidjson::MemoryPoolAllocat
Project: https://github.com/osquery/osquery.git Detailed Report: https://oss-fuzz.com/testcase?key=5684053100986368 Project: osquery Fuzzing Engine: libFuzzer Fuzz Target: osqueryfuzz-config Job Type: libfuzzerasanosquery Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x01807fff8001...
imagemagick:encoder_xpm_fuzzer: Use-of-uninitialized-value in ParseXPMColor
Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5736863532318720 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderxpmfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Cra...
njs/njs_process_script_fuzzer: Use-of-uninitialized-value in njs_regexp_exec_result
Project: http://hg.nginx.org/njs Detailed report: https://oss-fuzz.com/testcase?key=5127028405174272 Project: njs Fuzzer: libFuzzernjsprocessscriptfuzzer Fuzz target binary: njsprocessscriptfuzzer Job Type: libfuzzermsannjs Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address:...
ffmpeg/ffmpeg_AV_CODEC_ID_DNXHD_fuzzer: Heap-buffer-overflow in ff_combine_frame
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5747756078989312 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDDNXHDfuzzer Fuzz target binary: ffmpegAVCODECIDDNXHDfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ Cras...
grpc/api_fuzzer: Incorrect-function-pointer-type in grpc_core::AresDnsResolver::StartResolvingLocked
Project: https://github.com/grpc/grpc.git Detailed report: https://oss-fuzz.com/testcase?key=5129478546653184 Project: grpc Fuzzer: libFuzzergrpcapifuzzer Fuzz target binary: apifuzzer Job Type: libfuzzerubsangrpc Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash Address: Crash...
harfbuzz/hb-subset-fuzzer: Global-buffer-overflow in CFF::BlendArg::set_blends
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5710107829075968 Project: harfbuzz Fuzzer: aflharfbuzzhb-subset-fuzzer Fuzz target binary: hb-subset-fuzzer Job Type: aflasanharfbuzz Platform Id: linux Crash Type: Global-buffer-overflow READ 8...
dav1d/dav1d_fuzzer: Heap-buffer-overflow in setup_tile
Project: https://code.videolan.org/videolan/dav1d.git Detailed report: https://oss-fuzz.com/testcase?key=5731769337249792 Project: dav1d Fuzzer: afldav1dfuzzer Fuzz target binary: dav1dfuzzer Job Type: aflasandav1d Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 2 Crash Address:...
chakra: Crash in Js::PathTypeHandlerBase::AddPropertyInternal
Project: https://github.com/Microsoft/ChakraCore.git Detailed report: https://oss-fuzz.com/testcase?key=6042404720214016 Project: chakra Fuzzer: jsfuzzer Job Type: asanchakra Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x5617b9e05560 Crash State:...
zlib-ng/compress_fuzzer: Use-of-uninitialized-value in deflate_medium
Project: https://github.com/sebpop/zlib-ng.git https://github.com/zlib-ng/zlib-ng.git Detailed report: https://oss-fuzz.com/testcase?key=6268121894617088 Project: zlib-ng Fuzzer: libFuzzerzlib-ngcompressfuzzer Fuzz target binary: compressfuzzer Job Type: libfuzzermsanzlib-ng Platform Id: linux...