Threats Tagged 'oss-fuzz'

A heap-buffer-overflow vulnerability exists in the ndlz8_decompress function of the c-blosc2 library, as reported by OSS-Fuzz. This issue causes a read overflow on the heap, potentially leading to crashes or undefined behavior during decompression operations. The vulnerability affects many specific versions of c-blosc2 from 2.0.0 through 3.1.5.

A heap-buffer-overflow vulnerability exists in the blosc_d function of the c-blosc2 library, as reported by OSS-Fuzz. The issue involves a read overflow of 4 bytes on the heap during decompression operations. This affects multiple exact versions of c-blosc2 from 2.0.0 through 3.1.5. No official patch or remediation details are provided in the available data.

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54228 ``` Crash type: Heap-buffer-overflow READ 1 Crash state: dwg_decode_INSERT_private dwg_decode_INSERT dwg_decode_add_object ```

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53617 ``` Crash type: Heap-buffer-overflow READ 8 Crash state: dwg_json_LTYPE json_objects_write dwg_write_json ```

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47151 ``` Crash type: Segv on unknown address Crash state: dwg_ref_get_object dwg_geojson_feature dwg_geojson_object ```

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46994 ``` Crash type: Heap-buffer-overflow READ 8 Crash state: dwg_encode_VERTEX_2D dwg_encode_add_object dwg_encode ```

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47300 ``` Crash type: Heap-double-free Crash state: dwg_free_XRECORD_private dwg_free_XRECORD dwg_free_object ```

A heap-buffer-overflow vulnerability exists in the inflate function used by the c-blosc2 library. This issue was identified through OSS-Fuzz and involves a read overflow on the heap during decompression operations. Multiple specific versions of c-blosc2 are affected. No CVSS score is provided, and no known exploits are reported in the wild.

A vulnerability identified as OSV-2023-1129 affects the libheif library, involving an UNKNOWN READ error in the HeifPixelImage::overlay function. The issue was reported by OSS-Fuzz and results in a crash during image decoding operations. Multiple specific versions of libheif from 1.16.2 through 1.23.1 are affected. No patch or fix information is currently provided, and there are no known exploits in the wild.

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49602 ``` Crash type: Heap-double-free Crash state: dwg_free_common_entity_data dwg_free_DIMENSION_ANG2LN dwg_free_object ```