perfetto/trace_processor_fuzzer: Crash in perfetto::trace_processor::ProtoTraceParser::ParseTypedFtraceToRaw

Project: https://android.googlesource.com/platform/external/perfetto/ Detailed report: https://oss-fuzz.com/testcase?key=5740416861732864 Project: perfetto Fuzzer: libFuzzerperfettotraceprocessorfuzzer Fuzz target binary: traceprocessorfuzzer Job Type: libfuzzerasanperfetto Platform Id: linux Cra...

clamav/clamav_scanmap_PDF_fuzzer: Heap-buffer-overflow in pdf_nextobject

Detailed report: https://oss-fuzz.com/testcase?key=5654323172737024 Project: clamav Fuzzer: libFuzzerclamavscanmapPDFfuzzer Fuzz target binary: clamavscanmapPDFfuzzer Job Type: libfuzzerasanclamav Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60a00009eddd Crash State...

radare2/ia_fuzz: Heap-double-free in _parse_resource_directory

Project: https://github.com/radare/radare2.git Detailed report: https://oss-fuzz.com/testcase?key=5652434150490112 Project: radare2 Fuzzer: libFuzzerradare2iafuzz Fuzz target binary: iafuzz Job Type: libfuzzerasanradare2 Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x605000064db...

freetype2/ftfuzzer: Bad-free in tt_face_vary_cvt

Project: https://github.com/freetype/freetype2-testing.git Detailed report: https://oss-fuzz.com/testcase?key=5877951005458432 Project: freetype2 Fuzzer: libFuzzerfreetype2ftfuzzer Fuzz target binary: ftfuzzer Job Type: libfuzzerasanfreetype2 Platform Id: linux Crash Type: Bad-free Crash Address:...

graphicsmagick/coder_PCT_fuzzer: Heap-buffer-overflow in AcquireCacheNexus

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5728961439989760 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderPCTfuzzer Fuzz target binary: coderPCTfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...

imagemagick/encoder_palm_fuzzer: Use-of-uninitialized-value in IsFuzzyEquivalencePixelInfo

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4532840478801920 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderpalmfuzzer Fuzz target binary: encoderpalmfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

unrar/unrar_fuzzer: Heap-buffer-overflow in Unpack::CopyString

Project: https://github.com/aawc/unrar.git Detailed report: https://oss-fuzz.com/testcase?key=6224876978307072 Project: unrar Fuzzer: libFuzzerunrarfuzzer Fuzz target binary: unrarfuzzer Job Type: libfuzzerasanunrar Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address:...

bloaty/fuzz_target: Heap-use-after-free in void bloaty::RangeMap::ComputeRollup<bloaty::DualMaps::ComputeRollup

Project: https://github.com/google/bloaty.git Detailed report: https://oss-fuzz.com/testcase?key=5657391942074368 Project: bloaty Fuzzer: libFuzzerbloatyfuzztarget Fuzz target binary: fuzztarget Job Type: libfuzzerasanbloaty Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address:...

tpm2/tpm2_execute_command_fuzzer: Index-out-of-bounds in MemoryRemoveTrailingZeros

Project: https://chromium.googlesource.com/chromiumos/thirdparty/tpm2 Detailed report: https://oss-fuzz.com/testcase?key=6246632883486720 Project: tpm2 Fuzzer: libFuzzertpm2executecommandfuzzer Fuzz target binary: tpm2executecommandfuzzer Job Type: libfuzzerubsantpm2 Platform Id: linux Crash Type...

libreoffice: Heap-use-after-free in SwNumRule::GetNumFormat

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=4591319768891392 Project: libreoffice Fuzzer: libFuzzerlibreofficeww6fuzzer Fuzz target binary: ww6fuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-use-after-fre...

librawspeed: Use-of-uninitialized-value in rawspeed::RawImageData::checkMemIsInitialized

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=4854170727219200 Project: librawspeed Fuzzer: libFuzzerlibrawspeedTiffDecoderFuzzer-ThreefrDecoder Fuzz target binary: TiffDecoderFuzzer-ThreefrDecoder Job Type: libfuzzermsanlibrawspeed...

gnutls: Use-of-uninitialized-value in __gmpn_tdiv_qr

Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://oss-fuzz.com/testcase?key=5744749560463360 Project: gnutls Fuzzer: libFuzzergnutlssrpclientfuzzer Fuzz target binary: gnutlssrpclientfuzzer Job Type: libfuzzermsangnutls Platform Id: linux Crash Type: Use-of-uninitialized-valu...

ffmpeg: Index-out-of-bounds in ff_hevc_decode_short_term_rps

Detailed report: https://oss-fuzz.com/testcase?key=6209288450080768 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDHEVCfuzzer Fuzz target binary: ffmpegAVCODECIDHEVCfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State:...

gdal: Bad-cast to xercesc_3_1::DOMElement from xercesc_3_1::DOMTextImpl;getPolygon;ILI2Reader::getGeometry

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=6328230174785536 Project: gdal Fuzzer: libFuzzergdalogrfuzzer Fuzz target binary: ogrfuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: Bad-cast Crash Address: 0x0000080e4d60 Crash State:...

libplist: Memcpy-param-overlap in parse_data_node

Project: https://github.com/libimobiledevice/libplist.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4930725262393344 Project: libplist Fuzzer: libFuzzerlibplistbplistfuzzer Fuzz target binary: bplistfuzzer Job Type: libfuzzerasanlibplist Platform Id: linux Crash Type:...

sqlite3: Heap-use-after-free in sqlite3StrAccumAppend

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5770842466156544 Target: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzzer binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0x60c000000813 Crash State:...

Heap-buffer-overflow in Mac_Read_sfnt_Resource

Project: https://github.com/freetype/freetype2-testing.git...

openh264:decoder_fuzzer: Crash in WelsDec::WelsMarkAsRef

Project: https://github.com/cisco/openh264.git Detailed Report: https://oss-fuzz.com/testcase?key=5731532414910464 Project: openh264 Fuzzing Engine: libFuzzer Fuzz Target: decoderfuzzer Job Type: libfuzzerasanopenh264 Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x7f0ac8de0c30 Crash...

wolfssl:fuzzer-wolfssh-server: Heap-buffer-overflow in wolfSSH_accept

Project: https://github.com/wolfssl/wolfssl.git Detailed Report: https://oss-fuzz.com/testcase?key=5752343091740672 Project: wolfssl Fuzzing Engine: libFuzzer Fuzz Target: fuzzer-wolfssh-server Job Type: libfuzzerasanwolfssl Platform Id: linux Crash Type: Heap-buffer-overflow READ 5 Crash Address...

usrsctp:fuzzer_listen: Heap-buffer-overflow in sctp_process_init

Project: https://github.com/weinrank/usrsctp.git https://github.com/sctplab/usrsctp.git Detailed Report: https://oss-fuzz.com/testcase?key=5077370870169600 Project: usrsctp Fuzzing Engine: afl Fuzz Target: fuzzerlisten Job Type: aflasanusrsctp Platform Id: linux Crash Type: Heap-buffer-overflow...

monero:cold-transaction_fuzz_tests: Heap-buffer-overflow in unpack_vartime

Project: https://github.com/monero-project/monero.git Detailed Report: https://oss-fuzz.com/testcase?key=5164790941745152 Project: monero Fuzzing Engine: libFuzzer Fuzz Target: cold-transactionfuzztests Job Type: libfuzzerasanmonero Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

ndpi:fuzz_process_packet: Use-of-uninitialized-value in ndpi_check_dga_name

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5641543770439680 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzprocesspacket Job Type: libfuzzermsanndpi Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

php:php-fuzz-execute: Crash in zend_gc_delref

Detailed Report: https://oss-fuzz.com/testcase?key=5758025133195264 Project: php Fuzzing Engine: libFuzzer Fuzz Target: php-fuzz-execute Job Type: libfuzzerasani386php Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0xbebebebe Crash State: zendgcdelref zvaldelrefp zvalptrdtornogc...

php:php-fuzz-parser: Heap-use-after-free in shutdown_executor

Detailed Report: https://oss-fuzz.com/testcase?key=6273714575114240 Project: php Fuzzing Engine: libFuzzer Fuzz Target: php-fuzz-parser Job Type: libfuzzerasani386php Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0xf38297cc Crash State: shutdownexecutor zenddeactivate...

c-blosc2:decompress_fuzzer: Heap-buffer-overflow in tinfl_decompress

Project: https://github.com/Blosc/c-blosc2.git Detailed Report: https://oss-fuzz.com/testcase?key=5120916286341120 Project: c-blosc2 Fuzzing Engine: libFuzzer Fuzz Target: decompressfuzzer Job Type: libfuzzerasanc-blosc2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

arduinojson:json_fuzzer: Use-of-uninitialized-value in void ArduinoJsonNUMBER_71::Utf8::encodeCodepoint<ArduinoJsonNUMBER_71::StringCop

Project: https://github.com/bblanchon/ArduinoJson.git Detailed Report: https://oss-fuzz.com/testcase?key=5127643834613760 Project: arduinojson Fuzzing Engine: libFuzzer Fuzz Target: jsonfuzzer Job Type: libfuzzermsanarduinojson Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...

qt:qtsvg_svg_qsvgrenderer_render: Heap-buffer-overflow in QPointF::x

Project: git://code.qt.io/qt/qt5.git Detailed Report: https://oss-fuzz.com/testcase?key=5721393736712192 Project: qt Fuzzing Engine: libFuzzer Fuzz Target: qtsvgsvgqsvgrendererrender Job Type: libfuzzerasanqt Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash Address: 0x60c0000064b0...

nanopb:fuzztest: Use-of-uninitialized-value in pb_encode_varint

Project: https://github.com/nanopb/nanopb.git Detailed Report: https://oss-fuzz.com/testcase?key=5127522971549696 Project: nanopb Fuzzing Engine: libFuzzer Fuzz Target: fuzztest Job Type: libfuzzermsannanopb Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

harfbuzz:hb-subset-fuzzer: Crash in hb_vector_t<CFF::parsed_cs_op_t>::resize

Project: https://github.com/harfbuzz/harfbuzz.git Detailed Report: https://oss-fuzz.com/testcase?key=5707809174585344 Project: harfbuzz Fuzzing Engine: libFuzzer Fuzz Target: hb-subset-fuzzer Job Type: libfuzzerasanharfbuzz Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x0000000c660...

sqlite3:ossfuzz: Use-of-uninitialized-value in sqlite3Atoi64

Detailed Report: https://oss-fuzz.com/testcase?key=4899130430980096 Project: sqlite3 Fuzzing Engine: libFuzzer Fuzz Target: ossfuzz Job Type: libfuzzermsansqlite3 Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: sqlite3Atoi64 computeNumericType numericType...

mysql-server:fuzz_initfile: Heap-buffer-overflow in my_ismbchar_utf8

Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5361070991212544 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzinitfile Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Heap-buffer-overflow READ 2 Crash...

imagemagick:ping_mvg_fuzzer: Heap-buffer-overflow in DrawPrimitive

Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5681725698211840 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingmvgfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash...

gdal:lvbag_fuzzer: Heap-buffer-overflow in OGR_RawField_IsUnset

Project: https://github.com/OSGeo/gdal.git Detailed Report: https://oss-fuzz.com/testcase?key=5186645136769024 Project: gdal Fuzzing Engine: honggfuzz Fuzz Target: lvbagfuzzer Job Type: honggfuzzasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x6020000038b0 Cras...

monero:load-from-json_fuzz_tests: Global-buffer-overflow in epee::misc_utils::parse::match_string2

Project: https://github.com/monero-project/monero.git Detailed Report: https://oss-fuzz.com/testcase?key=5096090558005248 Project: monero Fuzzing Engine: libFuzzer Fuzz Target: load-from-jsonfuzztests Job Type: libfuzzerasanmonero Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Crash...

cryptofuzz:cryptofuzz-openssl-noasm: Use-of-uninitialized-value in fuzzing::memory::memory_test_msan

Project: https://github.com/guidovranken/cryptofuzz.git Detailed Report: https://oss-fuzz.com/testcase?key=4846477779402752 Project: cryptofuzz Fuzzing Engine: libFuzzer Fuzz Target: cryptofuzz-openssl-noasm Job Type: libfuzzermsancryptofuzz Platform Id: linux Crash Type: Use-of-uninitialized-val...

libspng:spng_read_fuzzer: Use-of-uninitialized-value in check_exif

Project: https://gitlab.com/randy408/libspng.git https://github.com/randy408/libspng.git Detailed Report: https://oss-fuzz.com/testcase?key=5644543818203136 Project: libspng Fuzzing Engine: libFuzzer Fuzz Target: spngreadfuzzer Job Type: libfuzzermsanlibspng Platform Id: linux Crash Type:...

libspng:spng_read_fuzzer: Use-of-uninitialized-value in read_non_idat_chunks

Project: https://gitlab.com/randy408/libspng.git https://github.com/randy408/libspng.git Detailed Report: https://oss-fuzz.com/testcase?key=5674795839782912 Project: libspng Fuzzing Engine: libFuzzer Fuzz Target: spngreadfuzzer Job Type: libfuzzermsanlibspng Platform Id: linux Crash Type:...

stb:stbi_read_fuzzer: Use-of-uninitialized-value in stbi__jpeg_huff_decode

Detailed Report: https://oss-fuzz.com/testcase?key=6243539368542208 Project: stb Fuzzing Engine: libFuzzer Fuzz Target: stbireadfuzzer Job Type: libfuzzermsanstb Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: stbijpeghuffdecode stbijpegdecodeblockprogac...

libzmq:test_connect_null_fuzzer: Segv on unknown address with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=5716323687727104 Project: libzmq Fuzzing Engine: libFuzzer Fuzz Target: testconnectnullfuzzer Job Type: libfuzzerasanlibzmq Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: NULL Sanitizer: address ASAN Crash...

ndpi:fuzz_ndpi_reader: Segv on unknown address in process_ndpi_collected_info

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5715653119180800 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzndpireader Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State:...

libfmt:fuzzer_named_arg: Stack-buffer-underflow in fmt::v6::basic_format_args<fmt::v6::basic_format_context<std::__1::back_insert_i

Detailed Report: https://oss-fuzz.com/testcase?key=5747676286287872 Project: libfmt Fuzzing Engine: libFuzzer Fuzz Target: fuzzernamedarg Job Type: libfuzzerasanlibfmt Platform Id: linux Crash Type: Stack-buffer-underflow READ 16 Crash Address: 0x7f200d9a6110 Crash State:...

ndpi:fuzz_process_packet: Heap-buffer-overflow in ndpi_search_oracle

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5090959332474880 Project: ndpi Fuzzing Engine: afl Fuzz Target: fuzzprocesspacket Job Type: aflasanndpi Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60a0000fbad1 Crash State...

suricata:fuzz_applayerparserparse: Heap-buffer-overflow in SSLv3ParseHandshakeType

Detailed Report: https://oss-fuzz.com/testcase?key=5739777711407104 Project: suricata Fuzzing Engine: libFuzzer Fuzz Target: fuzzapplayerparserparse Job Type: libfuzzerasansuricata Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address: 0x6070000011f4 Crash State:...

binutils:fuzz_disassemble: Use-of-uninitialized-value in loop_prim_n_bytes

Detailed Report: https://oss-fuzz.com/testcase?key=5652986874560512 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzermsanbinutils Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: loopprimnbytes decodes12z printinsns12...

pcre2:pcre2_fuzzer: Crash in match

Detailed Report: https://oss-fuzz.com/testcase?key=6290883744104448 Project: pcre2 Fuzzing Engine: libFuzzer Fuzz Target: pcre2fuzzer Job Type: libfuzzermsanpcre2 Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x7fff9416d140 Crash State: match pcre2match8 pcre2fuzzsupport.c Sanitizer...

skia:api_skdescriptor: Crash with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=5755812456955904 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: apiskdescriptor Job Type: libfuzzermsanskia Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000004050020 Crash State: NULL Sanitizer: memory MSAN Recommended...

openthread:ip6-send-fuzzer: Stack-buffer-overflow in ot::ExtendedTlv::GetLength

Project: https://github.com/openthread/openthread.git Detailed Report: https://oss-fuzz.com/testcase?key=5751684162912256 Project: openthread Fuzzing Engine: honggfuzz Fuzz Target: ip6-send-fuzzer Job Type: honggfuzzasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow READ 2 Crash...

file:magic_fuzzer: Index-out-of-bounds in der_tag

Project: https://github.com/file/file.git Detailed Report: https://oss-fuzz.com/testcase?key=5642732083347456 Project: file Fuzzing Engine: libFuzzer Fuzz Target: magicfuzzer Job Type: libfuzzerubsanfile Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: dertag dercmp...

wasmtime:differential: Crash in [stack]

Project: https://github.com/bytecodealliance/wasmtime.git Detailed Report: https://oss-fuzz.com/testcase?key=5637784696258560 Project: wasmtime Fuzzing Engine: libFuzzer Fuzz Target: differential Job Type: libfuzzerasanwasmtime Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address:...

htslib:hts_open_fuzzer: Crash in hpeek

Project: https://github.com/samtools/htslib.git Detailed Report: https://oss-fuzz.com/testcase?key=5711296702185472 Project: htslib Fuzzing Engine: libFuzzer Fuzz Target: htsopenfuzzer Job Type: libfuzzerubsanhtslib Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000010000 Crash...