5328 matches found
ffmpeg:ffmpeg_AV_CODEC_ID_ADPCM_IMA_CUNNING_fuzzer: Global-buffer-overflow in adpcm_ima_cunning_expand_nibble
Detailed Report: https://oss-fuzz.com/testcase?key=5717917221257216 Project: ffmpeg Fuzzing Engine: honggfuzz Fuzz Target: ffmpegAVCODECIDADPCMIMACUNNINGfuzzer Job Type: honggfuzzasanffmpeg Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Crash Address: 0x000000a39768 Crash State:...
ndpi:fuzz_process_packet: Heap-buffer-overflow in ndpi_search_oracle
Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5090959332474880 Project: ndpi Fuzzing Engine: afl Fuzz Target: fuzzprocesspacket Job Type: aflasanndpi Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60a0000fbad1 Crash State...
suricata:fuzz_applayerparserparse: Heap-use-after-free in htp_connp_is_line_terminator
Project: https://github.com/OISF/suricata.git Detailed Report: https://oss-fuzz.com/testcase?key=5099629239861248 Project: suricata Fuzzing Engine: libFuzzer Fuzz Target: fuzzapplayerparserparse Job Type: libfuzzerasansuricata Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Addres...
dav1d:dav1d_fuzzer: Crash in dav1d_resize_ssse3
Project: https://code.videolan.org/videolan/dav1d.git Detailed Report: https://oss-fuzz.com/testcase?key=5692903256227840 Project: dav1d Fuzzing Engine: afl Fuzz Target: dav1dfuzzer Job Type: aflasandav1d Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x62b10000587c Crash State:...
quickjs:fuzz_eval: Heap-buffer-overflow in js_free_function_def
Detailed Report: https://oss-fuzz.com/testcase?key=5181144279810048 Project: quickjs Fuzzing Engine: honggfuzz Fuzz Target: fuzzeval Job Type: honggfuzzasanquickjs Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x7f40b5b3d1e3 Crash State: jsfreefunctiondef...
binutils:fuzz_disassemble: Use-of-uninitialized-value in loop_prim_n_bytes
Detailed Report: https://oss-fuzz.com/testcase?key=5652986874560512 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzermsanbinutils Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: loopprimnbytes decodes12z printinsns12...
envoy:stat_merger_fuzz_test: Crash in Envoy::Stats::SymbolTableImpl::Encoding::decodeTokens
Project: https://github.com/envoyproxy/envoy.git Detailed Report: https://oss-fuzz.com/testcase?key=5713856297172992 Project: envoy Fuzzing Engine: libFuzzer Fuzz Target: statmergerfuzztest Job Type: libfuzzerubsanenvoy Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x00000ac3b000 Cra...
file:magic_fuzzer: Index-out-of-bounds in der_tag
Project: https://github.com/file/file.git Detailed Report: https://oss-fuzz.com/testcase?key=5642732083347456 Project: file Fuzzing Engine: libFuzzer Fuzz Target: magicfuzzer Job Type: libfuzzerubsanfile Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: dertag dercmp...
qt:setMarkdown: Heap-buffer-overflow in md_process_table_row
Project: git://code.qt.io/qt/qt5.git Detailed Report: https://oss-fuzz.com/testcase?key=5685425572413440 Project: qt Fuzzing Engine: libFuzzer Fuzz Target: setMarkdown Job Type: libfuzzerasanqt Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x6020000006b0 Crash State:...
ffmpeg:ffmpeg_AV_CODEC_ID_DIRAC_fuzzer: Crash in ff_dequant_subband_32_sse4
Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5729372837511168 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegAVCODECIDDIRACfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x00000bba5000...
llvm:clang-fuzzer: Segv on unknown address in clang::LookupResult::sanity
Detailed Report: https://oss-fuzz.com/testcase?key=4872329519955968 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::LookupResult::sanity...
samba:fuzz_ndr_drsblobs_TYPE_STRUCT: Heap-buffer-overflow in ndr_push_scheduleHeader
Project: https://gitlab.com/samba-team/samba.git Detailed Report: https://oss-fuzz.com/testcase?key=6295741442293760 Project: samba Fuzzing Engine: libFuzzer Fuzz Target: fuzzndrdrsblobsTYPESTRUCT Job Type: libfuzzerasansamba Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Addres...
libreoffice:docxfuzzer: Bad-cast to SwIndexReg from invalid vptr in SwIndex::Remove
Project: git://anongit.freedesktop.org/libreoffice/core Detailed Report: https://oss-fuzz.com/testcase?key=5675859411468288 Project: libreoffice Fuzzing Engine: libFuzzer Fuzz Target: docxfuzzer Job Type: libfuzzerubsanlibreoffice Platform Id: linux Crash Type: Bad-cast Crash Address:...
binutils:fuzz_disassemble: Stack-buffer-overflow in get_indirect_operand
Detailed Report: https://oss-fuzz.com/testcase?key=5663912053178368 Project: binutils Fuzzing Engine: afl Fuzz Target: fuzzdisassemble Job Type: aflasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7f4f3e03ae5a Crash State: getindirectoperand printtwoopera...
php:php-fuzz-mbstring: Heap-buffer-overflow in match_at
Detailed Report: https://oss-fuzz.com/testcase?key=5192679935180800 Project: php Fuzzing Engine: afl Fuzz Target: php-fuzz-mbstring Job Type: aflasanphp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60200000e6b7 Crash State: matchat searchinrange onigsearchwithparam...
libhtp:fuzz_htp: Heap-buffer-overflow in LzmaDec_DecodeToDic
Project: https://github.com/OISF/libhtp.git Detailed Report: https://oss-fuzz.com/testcase?key=5659352148475904 Project: libhtp Fuzzing Engine: afl Fuzz Target: fuzzhtp Job Type: aflasanlibhtp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x621000003a6d Crash State:...
libhevc:hevc_dec_fuzzer: Global-buffer-overflow in ihevcd_unpack_coeffs
Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5101556982087680 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Global-buffer-overflow RE...
matio:matio_fuzzer: Heap-buffer-overflow in Mat_VarRead4
Project: git://git.code.sf.net/p/matio/matio Detailed Report: https://oss-fuzz.com/testcase?key=5166851121741824 Project: matio Fuzzing Engine: libFuzzer Fuzz Target: matiofuzzer Job Type: libfuzzerasani386matio Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address: 0xf26ff550...
lz4/compress_fuzzer: Heap-buffer-overflow in LZ4_write32
Project: https://github.com/lz4/lz4.git Detailed report: https://oss-fuzz.com/testcase?key=5726918013353984 Project: lz4 Fuzzer: afllz4compressfuzzer Fuzz target binary: compressfuzzer Job Type: aflasanlz4 Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash Address: 0x61c00000075b...
ffmpeg/ffmpeg_AV_CODEC_ID_MSS2_fuzzer: Index-out-of-bounds in vc1_decode_ac_coeff
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5666071933091840 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDMSS2fuzzer Fuzz target binary: ffmpegAVCODECIDMSS2fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...
imagemagick/encoder_j2k_fuzzer: Heap-buffer-overflow in ReadJP2Image
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5634686653562880 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderj2kfuzzer Fuzz target binary: encoderj2kfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...
open62541/fuzz_json_decode_encode: Heap-buffer-overflow in UA_unbase64
Project: https://github.com/open62541/open62541.git Detailed report: https://oss-fuzz.com/testcase?key=5207216900014080 Project: open62541 Fuzzer: libFuzzeropen62541fuzzjsondecodeencode Fuzz target binary: fuzzjsondecodeencode Job Type: libfuzzerasanopen62541 Platform Id: linux Crash Type:...
wget2/libwget_iri_fuzzer: Heap-buffer-overflow in _iri_unescape_inline
Project: https://gitlab.com/gnuwget/wget2.git Detailed report: https://oss-fuzz.com/testcase?key=5641953338720256 Project: wget2 Fuzzer: libFuzzerwget2libwgetirifuzzer Fuzz target binary: libwgetirifuzzer Job Type: libfuzzerasanwget2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Cras...
libreoffice/qpwfuzzer: Global-buffer-overflow in std::__1::unique_ptr<ScAttrArray, std::__1::default_delete<ScAttrArray> >::opera
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5728133946277888 Project: libreoffice Fuzzer: afllibreofficeqpwfuzzer Fuzz target binary: qpwfuzzer Job Type: aflasanlibreoffice Platform Id: linux Crash Type: Global-buffer-overflow READ 8...
perfetto/trace_processor_fuzzer: Crash in perfetto::trace_processor::ProtoTraceParser::ParseTypedFtraceToRaw
Project: https://android.googlesource.com/platform/external/perfetto/ Detailed report: https://oss-fuzz.com/testcase?key=5740416861732864 Project: perfetto Fuzzer: libFuzzerperfettotraceprocessorfuzzer Fuzz target binary: traceprocessorfuzzer Job Type: libfuzzerasanperfetto Platform Id: linux Cra...
openh264/decoder_fuzzer: Heap-use-after-free in WelsDec::MapColToList0
Project: https://github.com/cisco/openh264.git Detailed report: https://oss-fuzz.com/testcase?key=5730627922427904 Project: openh264 Fuzzer: libFuzzeropenh264decoderfuzzer Fuzz target binary: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: Heap-use-after-free READ 4...
radare2/ia_fuzz: Heap-double-free in _parse_resource_directory
Project: https://github.com/radare/radare2.git Detailed report: https://oss-fuzz.com/testcase?key=5652434150490112 Project: radare2 Fuzzer: libFuzzerradare2iafuzz Fuzz target binary: iafuzz Job Type: libfuzzerasanradare2 Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x605000064db...
librawspeed/VC5DecompressorFuzzer: Heap-buffer-overflow in rawspeed::VC5Decompressor::Wavelet::HighPassBand::decode
Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=5735870561255424 Project: librawspeed Fuzzer: libFuzzerlibrawspeedVC5DecompressorFuzzer Fuzz target binary: VC5DecompressorFuzzer Job Type: libfuzzerasanlibrawspeed Platform Id: linux Crash...
file/magic_fuzzer: Use-of-uninitialized-value in json_parse_number
Project: https://github.com/file/file.git Detailed report: https://oss-fuzz.com/testcase?key=5071138936848384 Project: file Fuzzer: libFuzzerfilemagicfuzzer Fuzz target binary: magicfuzzer Job Type: libfuzzermsanfile Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...
pcre2/pcre2_fuzzer: Heap-buffer-overflow in get_chr_property_list
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://oss-fuzz.com/testcase?key=5841302817079296 Project: pcre2 Fuzzer: aflpcre2fuzzer Fuzz target binary: pcre2fuzzer Job Type: aflasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60e0000002b3...
libwebp/fuzz_advanced_api: Heap-use-after-free in ShiftBytes
Project: https://chromium.googlesource.com/webm/libwebp Detailed report: https://oss-fuzz.com/testcase?key=5638028289638400 Project: libwebp Fuzzer: libFuzzerlibwebpfuzzadvancedapi Fuzz target binary: fuzzadvancedapi Job Type: libfuzzerasanlibwebp Platform Id: linux Crash Type: Heap-use-after-fre...
freetype2/ftfuzzer: Bad-free in tt_face_vary_cvt
Project: https://github.com/freetype/freetype2-testing.git Detailed report: https://oss-fuzz.com/testcase?key=5877951005458432 Project: freetype2 Fuzzer: libFuzzerfreetype2ftfuzzer Fuzz target binary: ftfuzzer Job Type: libfuzzerasanfreetype2 Platform Id: linux Crash Type: Bad-free Crash Address:...
imagemagick/encoder_palm_fuzzer: Use-of-uninitialized-value in IsFuzzyEquivalencePixelInfo
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4532840478801920 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderpalmfuzzer Fuzz target binary: encoderpalmfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...
boost/boost_regex_fuzzer: Bad-cast to boost::detail::sp_counted_baseboost::detail::shared_count::shared_count in boost::shared_ptr<boost::re_detail_NUMBER::named_subexpressions>::shared_ptr
Project: https://github.com/boostorg/boost.git Detailed report: https://oss-fuzz.com/testcase?key=6395263733202944 Project: boost Fuzzer: libFuzzerboostregexfuzzer Fuzz target binary: boostregexfuzzer Job Type: libfuzzerubsanboost Platform Id: linux Crash Type: Bad-cast Crash Address:...
bloaty/fuzz_target: Heap-use-after-free in void bloaty::RangeMap::ComputeRollup<bloaty::DualMaps::ComputeRollup
Project: https://github.com/google/bloaty.git Detailed report: https://oss-fuzz.com/testcase?key=5657391942074368 Project: bloaty Fuzzer: libFuzzerbloatyfuzztarget Fuzz target binary: fuzztarget Job Type: libfuzzerasanbloaty Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address:...
libreoffice/scrtffuzzer: Heap-buffer-overflow in ScCompiler::NextSymbol
Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5665914566475776 Project: libreoffice Fuzzer: libFuzzerlibreofficescrtffuzzer Fuzz target binary: scrtffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type:...
llvm: Heap-buffer-overflow in llvm::object::WasmObjectFile::parseCustomSection
Project: https://github.com/llvm/llvm-project.git Detailed report: https://oss-fuzz.com/testcase?key=4529026217541632 Project: llvm Fuzzer: libFuzzerllvmllvm-dwarfdump-fuzzer Fuzz target binary: llvm-dwarfdump-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Heap-buffer-overflow...
librawspeed: Crash in void rawspeed::Cr2Decompressor::decodeN_X_Y<2, 1, 1>
Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=6718927029665792 Project: librawspeed Fuzzer: afllibrawspeedFiffParserFuzzer-GetDecoder-Decode Fuzz target binary: FiffParserFuzzer-GetDecoder-Decode Job Type: aflasanlibrawspeed Platform Id:...
gnutls: Use-of-uninitialized-value in __gmpz_invert
Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://oss-fuzz.com/testcase?key=4734766895071232 Project: gnutls Fuzzer: libFuzzergnutlsprivatekeyparserfuzzer Fuzz target binary: gnutlsprivatekeyparserfuzzer Job Type: libfuzzermsangnutls Platform Id: linux Crash Type:...
strongswan: Index-out-of-bounds in traffic_selector_create_from_rfcNUMBER_format
Project: https://github.com/strongswan/strongswan.git Detailed report: https://oss-fuzz.com/testcase?key=6094496901103616 Project: strongswan Fuzzer: libFuzzerstrongswanfuzzcerts Fuzz target binary: fuzzcerts Job Type: libfuzzerubsanstrongswan Platform Id: linux Crash Type: Index-out-of-bounds...
gdal: Heap-buffer-overflow in XYZRasterBand::IReadBlock
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6536746705616896 Project: gdal Fuzzer: libFuzzergdalfilesystemfuzzer Fuzz target binary: gdalfilesystemfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash...
libplist: Memcpy-param-overlap in parse_data_node
Project: https://github.com/libimobiledevice/libplist.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4930725262393344 Project: libplist Fuzzer: libFuzzerlibplistbplistfuzzer Fuzz target binary: bplistfuzzer Job Type: libfuzzerasanlibplist Platform Id: linux Crash Type:...
libtsm: Heap-buffer-overflow in tsm_screen_tab_left
Project: git://people.freedesktop.org/dvdhrm/libtsm Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5633680093478912 Project: libtsm Fuzzer: libFuzzerlibtsmfuzzer Fuzz target binary: libtsmfuzzer Job Type: libfuzzerasanlibtsm Platform Id: linux Crash Type:...
Heap-buffer-overflow in Mac_Read_sfnt_Resource
Project: https://github.com/freetype/freetype2-testing.git...
skia:skruntimeeffect: Segv on unknown address in SkSL::Expression::kind
Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=5118234535395328 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: skruntimeeffect Job Type: libfuzzerasanskia Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State:...
openh264:decoder_fuzzer: Crash in WelsDec::WelsMarkAsRef
Project: https://github.com/cisco/openh264.git Detailed Report: https://oss-fuzz.com/testcase?key=5731532414910464 Project: openh264 Fuzzing Engine: libFuzzer Fuzz Target: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x7f0ac8de0c30 Crash...
libyal:libbde_volume_fuzzer: Use-of-uninitialized-value in libcaes_internal_context_set_encryption_key
Detailed Report: https://oss-fuzz.com/testcase?key=4805690566377472 Project: libyal Fuzzing Engine: libFuzzer Fuzz Target: libbdevolumefuzzer Job Type: libfuzzermsanlibyal Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: libcaesinternalcontextsetencryptionkey...
usrsctp:fuzzer_listen: Heap-buffer-overflow in sctp_process_init
Project: https://github.com/weinrank/usrsctp.git https://github.com/sctplab/usrsctp.git Detailed Report: https://oss-fuzz.com/testcase?key=5077370870169600 Project: usrsctp Fuzzing Engine: afl Fuzz Target: fuzzerlisten Job Type: aflasanusrsctp Platform Id: linux Crash Type: Heap-buffer-overflow...
php:php-fuzz-execute: Crash in zend_gc_delref
Detailed Report: https://oss-fuzz.com/testcase?key=5758025133195264 Project: php Fuzzing Engine: libFuzzer Fuzz Target: php-fuzz-execute Job Type: libfuzzerasani386php Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0xbebebebe Crash State: zendgcdelref zvaldelrefp zvalptrdtornogc...
php:php-fuzz-parser: Heap-use-after-free in shutdown_executor
Detailed Report: https://oss-fuzz.com/testcase?key=6273714575114240 Project: php Fuzzing Engine: libFuzzer Fuzz Target: php-fuzz-parser Job Type: libfuzzerasani386php Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0xf38297cc Crash State: shutdownexecutor zenddeactivate...