envoy:stat_merger_fuzz_test: Crash in Envoy::Stats::SymbolTableImpl::Encoding::decodeTokens

Project: https://github.com/envoyproxy/envoy.git Detailed Report: https://oss-fuzz.com/testcase?key=5713856297172992 Project: envoy Fuzzing Engine: libFuzzer Fuzz Target: statmergerfuzztest Job Type: libfuzzerubsanenvoy Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x00000ac3b000 Cra...

libarchive:libarchive_fuzzer: Heap-use-after-free in copy_string

Project: https://github.com/libarchive/libarchive.git Detailed Report: https://oss-fuzz.com/testcase?key=5655329908195328 Project: libarchive Fuzzing Engine: libFuzzer Fuzz Target: libarchivefuzzer Job Type: libfuzzerasanlibarchive Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash...

wireshark:fuzzshark_ip_proto-udp: Heap-buffer-overflow in bytestring_to_str

Project: https://code.wireshark.org/review/wireshark Detailed Report: https://oss-fuzz.com/testcase?key=5728342863249408 Project: wireshark Fuzzing Engine: afl Fuzz Target: fuzzsharkipproto-udp Job Type: aflasanwireshark Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

php:php-fuzz-mbstring: Heap-buffer-overflow in match_at

Detailed Report: https://oss-fuzz.com/testcase?key=5192679935180800 Project: php Fuzzing Engine: afl Fuzz Target: php-fuzz-mbstring Job Type: aflasanphp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60200000e6b7 Crash State: matchat searchinrange onigsearchwithparam...

matio:matio_fuzzer: Use-of-uninitialized-value in psnip_safe_size_mul

Project: git://git.code.sf.net/p/matio/matio Detailed Report: https://oss-fuzz.com/testcase?key=5701145254690816 Project: matio Fuzzing Engine: libFuzzer Fuzz Target: matiofuzzer Job Type: libfuzzermsanmatio Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

ffmpeg/ffmpeg_AV_CODEC_ID_MSS2_fuzzer: Index-out-of-bounds in vc1_decode_ac_coeff

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5666071933091840 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDMSS2fuzzer Fuzz target binary: ffmpegAVCODECIDMSS2fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...

icu/collator_rulebased_fuzzer: Use-of-uninitialized-value in isMatchAtCPBoundary

Project: https://github.com/unicode-org/icu.git Detailed report: https://oss-fuzz.com/testcase?key=5644492876546048 Project: icu Fuzzer: libFuzzericucollatorrulebasedfuzzer Fuzz target binary: collatorrulebasedfuzzer Job Type: libfuzzermsanicu Platform Id: linux Crash Type:...

unicorn/fuzz_emu_mips_32be: Heap-buffer-overflow in tlb_set_page_mips

Project: https://github.com/unicorn-engine/unicorn.git Detailed report: https://oss-fuzz.com/testcase?key=5645992751267840 Project: unicorn Fuzzer: aflunicornfuzzemumips32be Fuzz target binary: fuzzemumips32be Job Type: aflasanunicorn Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Cra...

openh264/decoder_fuzzer: Heap-use-after-free in WelsDec::MapColToList0

Project: https://github.com/cisco/openh264.git Detailed report: https://oss-fuzz.com/testcase?key=5730627922427904 Project: openh264 Fuzzer: libFuzzeropenh264decoderfuzzer Fuzz target binary: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: Heap-use-after-free READ 4...

libxml2/libxml2_xml_read_memory_fuzzer: Use-of-uninitialized-value in xmlParseCharEncoding

Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://oss-fuzz.com/testcase?key=6287294328209408 Project: libxml2 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Fuzz target binary: libxml2xmlreadmemoryfuzzer Job Type: libfuzzermsanlibxml2 Platform Id: linux Crash Type:...

pcre2/pcre2_fuzzer: Heap-buffer-overflow in get_chr_property_list

Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://oss-fuzz.com/testcase?key=5841302817079296 Project: pcre2 Fuzzer: aflpcre2fuzzer Fuzz target binary: pcre2fuzzer Job Type: aflasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60e0000002b3...

graphicsmagick/coder_PNG_fuzzer: Use-of-uninitialized-value in ReadPNGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5146983567196160 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderPNGfuzzer Fuzz target binary: coderPNGfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

graphicsmagick/coder_GIF_fuzzer: Heap-buffer-overflow in DecodeImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=6043228022243328 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderGIFfuzzer Fuzz target binary: coderGIFfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...

graphicsmagick/coder_PCT_fuzzer: Unknown signal in _int_malloc

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=6738748617261056 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderPCTfuzzer Fuzz target binary: coderPCTfuzzer Job Type: libfuzzerubsangraphicsmagick Platform Id: linux Crash Type:...

yara/macho_fuzzer: Heap-buffer-overflow in macho_handle_segment_64_be

Project: https://github.com/VirusTotal/yara.git Detailed report: https://oss-fuzz.com/testcase?key=5917108346028032 Project: yara Fuzzer: libFuzzeryaramachofuzzer Fuzz target binary: machofuzzer Job Type: libfuzzerasanyara Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash Address:...

tor/oss-fuzz-vrs: Use-of-uninitialized-value in tor_vsscanf

Project: https://git.torproject.org/tor.git Detailed report: https://oss-fuzz.com/testcase?key=5851887808020480 Project: tor Fuzzer: libFuzzertoross-fuzz-vrs Fuzz target binary: oss-fuzz-vrs Job Type: libfuzzermsantor Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

llvm: Heap-buffer-overflow in checkDylibCommand

Project: https://github.com/llvm/llvm-project.git Detailed report: https://oss-fuzz.com/testcase?key=6218604343197696 Project: llvm Fuzzer: libFuzzerllvmllvm-dwarfdump-fuzzer Fuzz target binary: llvm-dwarfdump-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Heap-buffer-overflow...

libreoffice: Global-buffer-overflow in ImplUnicodeToDBCS

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=6290236680175616 Project: libreoffice Fuzzer: libFuzzerlibreofficewmffuzzer Fuzz target binary: wmffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type:...

gdal: Heap-buffer-overflow in NITFRasterBand::IReadBlock

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5463142119243776 Project: gdal Fuzzer: libFuzzergdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x603000084656 Crash State:...

proj4: Stack-buffer-overflow in pj_open_lib_ex

Detailed report: https://oss-fuzz.com/testcase?key=6058391271112704 Project: proj4 Fuzzer: aflproj4standardfuzzer Fuzz target binary: standardfuzzer Job Type: aflasanproj4 Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7f2bb94a2421 Crash State: pjopenlibex...

libyaml: Use-of-uninitialized-value in yaml_parser_scan_flow_scalar

Project: https://github.com/yaml/libyaml.git Detailed report: https://oss-fuzz.com/testcase?key=5607885063061504 Project: libyaml Fuzzer: libFuzzerlibyamlfuzzer Fuzz target binary: libyamlfuzzer Job Type: libfuzzermsanlibyaml Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address...

(size_t)BIO_write(in, buf, len) == len

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6308967940620288 Fuzzer: libFuzzer Job Type: libfuzzerasanopenssl Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: sizetBIOwritein, buf, len == len fuzzer::Fuzzer::ExecuteCallback fuzzer::Fuzzer::RunOne...

skia:sksl2spirv: Segv on unknown address in std::__1::unique_ptr<SkSL::Expression, std::__1::default_delete<SkSL::Expression

Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=6198631948091392 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: sksl2spirv Job Type: libfuzzerasanskia Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State:...

libreoffice:htmlfuzzer: Heap-use-after-free in SfxItemSet::Count

Project: git://anongit.freedesktop.org/libreoffice/core Detailed Report: https://oss-fuzz.com/testcase?key=5699610401832960 Project: libreoffice Fuzzing Engine: honggfuzz Fuzz Target: htmlfuzzer Job Type: honggfuzzasanlibreoffice Platform Id: linux Crash Type: Heap-use-after-free READ 2 Crash...

libavif:avif_decode_fuzzer: Heap-buffer-overflow in avifROStreamRead

Project: https://github.com/AOMediaCodec/libavif.git Detailed Report: https://oss-fuzz.com/testcase?key=5075525020942336 Project: libavif Fuzzing Engine: libFuzzer Fuzz Target: avifdecodefuzzer Job Type: libfuzzerasanlibavif Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address...

ffmpeg:ffmpeg_BSF_HEVC_METADATA_fuzzer: Index-out-of-bounds in cbs_h265_read_slice_segment_header

Detailed Report: https://oss-fuzz.com/testcase?key=6261760693370880 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegBSFHEVCMETADATAfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: cbsh265readslicesegmentheader...

libvips:smartcrop_fuzzer: Segv on unknown address in vips_XYZ2Lab_line

Project: https://github.com/libvips/libvips.git Detailed Report: https://oss-fuzz.com/testcase?key=4829562723368960 Project: libvips Fuzzing Engine: honggfuzz Fuzz Target: smartcropfuzzer Job Type: honggfuzzasanlibvips Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash...

xpdf:fuzz_pdfload: Segv on unknown address in GList::getLength

Detailed Report: https://oss-fuzz.com/testcase?key=5670951261044736 Project: xpdf Fuzzing Engine: honggfuzz Fuzz Target: fuzzpdfload Job Type: honggfuzzasanxpdf Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: GList::getLength Catalog::Catalog PDFDoc::setup2...

keystone:fuzz_asm_hex: Use-of-uninitialized-value in llvm_ks::HexagonMCCodeEmitter::getExprOpValue

Detailed Report: https://oss-fuzz.com/testcase?key=6220669925982208 Project: keystone Fuzzing Engine: libFuzzer Fuzz Target: fuzzasmhex Job Type: libfuzzermsankeystone Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: llvmks::HexagonMCCodeEmitter::getExprOpValu...

ffmpeg:ffmpeg_AV_CODEC_ID_JPEG2000_fuzzer: Heap-use-after-free in get_bits

Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5671488765296640 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegAVCODECIDJPEG2000fuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address...

ndpi:fuzz_process_packet: Heap-buffer-overflow in ndpi_search_h323

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5187010236252160 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzprocesspacket Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60300000011d...

ffmpeg:ffmpeg_AV_CODEC_ID_ADPCM_IMA_CUNNING_fuzzer: Global-buffer-overflow in adpcm_ima_cunning_expand_nibble

Detailed Report: https://oss-fuzz.com/testcase?key=5717917221257216 Project: ffmpeg Fuzzing Engine: honggfuzz Fuzz Target: ffmpegAVCODECIDADPCMIMACUNNINGfuzzer Job Type: honggfuzzasanffmpeg Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Crash Address: 0x000000a39768 Crash State:...

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in s_exD_process

Detailed Report: https://oss-fuzz.com/testcase?key=5645873112678400 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: sexDprocess sreadbuf sgets...

dav1d:dav1d_fuzzer: Crash in dav1d_resize_ssse3

Project: https://code.videolan.org/videolan/dav1d.git Detailed Report: https://oss-fuzz.com/testcase?key=5692903256227840 Project: dav1d Fuzzing Engine: afl Fuzz Target: dav1dfuzzer Job Type: aflasandav1d Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x62b10000587c Crash State:...

unicorn:fuzz_emu_arm_thumb: Crash in _fini

Detailed Report: https://oss-fuzz.com/testcase?key=5715446171172864 Project: unicorn Fuzzing Engine: honggfuzz Fuzz Target: fuzzemuarmthumb Job Type: honggfuzzasanunicorn Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x0000025522f0 Crash State: fini Sanitizer: address ASAN Recommende...

llvm:clang-fuzzer: Segv on unknown address in clang::OverloadExpr::find

Detailed Report: https://oss-fuzz.com/testcase?key=5663520494714880 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::OverloadExpr::find...

ffmpeg:ffmpeg_AV_CODEC_ID_DIRAC_fuzzer: Crash in ff_dequant_subband_32_sse4

Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5729372837511168 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegAVCODECIDDIRACfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x00000bba5000...

lwan:config_fuzzer: Global-buffer-overflow in lex_multiline_string

Project: git://github.com/lpereira/lwan Detailed Report: https://oss-fuzz.com/testcase?key=5642641999396864 Project: lwan Fuzzing Engine: afl Fuzz Target: configfuzzer Job Type: aflasanlwan Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Crash Address: 0x00000114d3e0 Crash State:...

libhevc:hevc_dec_fuzzer: Heap-buffer-overflow in ihevcd_process

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5758594137456640 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasanlibhevc Platform Id: linux Crash Type: Heap-buffer-overflow READ 4...

osquery:osqueryfuzz-config: Crash in rapidjson::internal::FastPath

Project: https://github.com/osquery/osquery.git Detailed Report: https://oss-fuzz.com/testcase?key=5751874325577728 Project: osquery Fuzzing Engine: libFuzzer Fuzz Target: osqueryfuzz-config Job Type: libfuzzerasanosquery Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x0001000c821b...

binutils:fuzz_disassemble: Stack-buffer-overflow in get_indirect_operand

Detailed Report: https://oss-fuzz.com/testcase?key=5663912053178368 Project: binutils Fuzzing Engine: afl Fuzz Target: fuzzdisassemble Job Type: aflasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7f4f3e03ae5a Crash State: getindirectoperand printtwoopera...

libssh:libssh_server_fuzzer: Use-of-uninitialized-value in ssh_buffer_unpack_va

Project: https://git.libssh.org/projects/libssh.git Detailed Report: https://oss-fuzz.com/testcase?key=5661411098755072 Project: libssh Fuzzing Engine: libFuzzer Fuzz Target: libsshserverfuzzer Job Type: libfuzzermsanlibssh Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address:...

libtiff:tiff_read_rgba_fuzzer: Use-of-uninitialized-value in TIFFYCbCrtoRGB

Project: https://gitlab.com/libtiff/libtiff.git Detailed Report: https://oss-fuzz.com/testcase?key=5715939605086208 Project: libtiff Fuzzing Engine: libFuzzer Fuzz Target: tiffreadrgbafuzzer Job Type: libfuzzermsanlibtiff Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address:...

lz4/compress_fuzzer: Heap-buffer-overflow in LZ4_write32

Project: https://github.com/lz4/lz4.git Detailed report: https://oss-fuzz.com/testcase?key=5726918013353984 Project: lz4 Fuzzer: afllz4compressfuzzer Fuzz target binary: compressfuzzer Job Type: aflasanlz4 Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address: 0x61c00000075b...

libfdk-aac/aacDecoder_DecodeFrame: Index-out-of-bounds in processDrcTime

Detailed report: https://oss-fuzz.com/testcase?key=5744919487971328 Project: libfdk-aac Fuzzer: libFuzzerlibfdk-aacaacDecoderDecodeFrame Fuzz target binary: aacDecoderDecodeFrame Job Type: libfuzzerubsanlibfdk-aac Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State:...

libical/libical_fuzzer: Heap-use-after-free in icalparameter_new_from_value_string

Project: https://github.com/libical/libical.git Detailed report: https://oss-fuzz.com/testcase?key=5753503722504192 Project: libical Fuzzer: libFuzzerlibicalfuzzer Fuzz target binary: libicalfuzzer Job Type: libfuzzerasanlibical Platform Id: linux Crash Type: Heap-use-after-free READ 2 Crash...

open62541/fuzz_binary_message: Heap-use-after-free in String_clear

Project: https://github.com/open62541/open62541.git Detailed report: https://oss-fuzz.com/testcase?key=5749297120804864 Project: open62541 Fuzzer: libFuzzeropen62541fuzzbinarymessage Fuzz target binary: fuzzbinarymessage Job Type: libfuzzerasanopen62541 Platform Id: linux Crash Type:...

net-snmp/agentx_parse_fuzzer: Heap-buffer-overflow in agentx_parse_string

Project: git://git.code.sf.net/p/net-snmp/code Detailed report: https://oss-fuzz.com/testcase?key=5639564196052992 Project: net-snmp Fuzzer: libFuzzernet-snmpagentxparsefuzzer Fuzz target binary: agentxparsefuzzer Job Type: libfuzzerasannet-snmp Platform Id: linux Crash Type: Heap-buffer-overflow...

wget2/libwget_iri_fuzzer: Heap-buffer-overflow in _iri_unescape_inline

Project: https://gitlab.com/gnuwget/wget2.git Detailed report: https://oss-fuzz.com/testcase?key=5641953338720256 Project: wget2 Fuzzer: libFuzzerwget2libwgetirifuzzer Fuzz target binary: libwgetirifuzzer Job Type: libfuzzerasanwget2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Cras...

gnupg/fuzz_verify: Heap-use-after-free in proc_plaintext

Project: git://git.gnupg.org/gnupg.git Detailed report: https://oss-fuzz.com/testcase?key=5697816893063168 Project: gnupg Fuzzer: libFuzzergnupgfuzzverify Fuzz target binary: fuzzverify Job Type: libfuzzerasangnupg Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address:...