Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
OSV-2022-37
  • OSS-Fuzz/tdengine
Heap-buffer-overflow in stringProcess
  • ver-2.5.0.0
  • ver-2.5.0.1
  • ver-2.6.0.0
  • ver-2.6.0.1
  • ver-2.6.0.3-kh
  • ver-2.6.0.4
  • ver-2.6.0.6
  • ...
2023-02-04T01:09:45.225130Z No fix available
OSV-2022-714
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dynapi_set_helper
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-02-04T00:17:10.514837Z No fix available
OSV-2022-379
  • OSS-Fuzz/libredwg
Segv on unknown address in bit_write_TV
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-02-04T00:17:06.709133Z No fix available
OSV-2022-400
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free_XRECORD_private
  • 0.12.4.4590
  • 0.12.4.4598
  • 0.12.4.4601
  • 0.12.4.4606
  • 0.12.4.4607
  • 0.12.4.4608
  • 0.12.4.4613
  • ...
2023-02-04T00:16:55.883936Z No fix available
OSV-2022-388
  • OSS-Fuzz/libredwg
Segv on unknown address in dwg_ref_get_object
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-02-04T00:16:32.997792Z No fix available
OSV-2022-834
  • OSS-Fuzz/fluent-bit
Heap-use-after-free in mk_event_timeout_destroy
  • v2.0.0
  • v2.0.0-rc1
  • v2.0.0-rc2
  • v2.0.0-rc3
  • v2.0.0pre
  • v2.0.1
  • v2.0.2
  • ...
2023-02-04T00:16:21.882895Z No fix available
OSV-2022-372
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_encode_VERTEX_2D
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-02-04T00:16:18.561775Z No fix available
OSV-2022-653
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free_common_entity_data
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-02-04T00:15:40.425807Z No fix available
OSV-2022-1259
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_decode_INSERT_private
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-02-04T00:15:21.466809Z No fix available
OSV-2022-1176
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free
  • 0.12.4.4590
  • 0.12.4.4598
  • 0.12.4.4601
  • 0.12.4.4606
  • 0.12.4.4607
  • 0.12.4.4608
  • 0.12.4.4613
  • ...
2023-02-04T00:15:19.181145Z No fix available
OSV-2022-1198
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_json_LTYPE
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-02-04T00:15:15.256712Z No fix available
OSV-2021-1086
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_convert_SAB_to_SAT1
  • 0.12.3.4264
  • 0.12.3.4267
  • 0.12.3.4270
  • 0.12.3.4273
  • 0.12.3.4280
  • 0.12.4
  • 0.12.4.4288
  • ...
2023-02-04T00:15:09.601550Z No fix available
OSV-2021-1343
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in get_next_owned_entity
  • 0.12.4.4313
  • 0.12.4.4317
  • 0.12.4.4321
  • 0.12.4.4324
  • 0.12.4.4331
  • 0.12.4.4338
  • 0.12.4.4343
  • ...
2023-02-04T00:14:29.152371Z No fix available
OSV-2022-725
  • OSS-Fuzz/libjxl
Heap-buffer-overflow in jxl::N_EMU128::WriteToU8Stage::ProcessRow
  • v0.8.0rc1
  • v0.8.0
  • v0.8.1
2023-02-04T00:13:03.880604Z No fix available
OSV-2022-51
  • OSS-Fuzz/c-blosc2
Negative-size-param in ndlz4_decompress
  • v2.0.0
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • v2.1.0
2023-02-04T00:12:57.308124Z Fix available
OSV-2022-608
  • OSS-Fuzz/libjxl
Heap-use-after-free in jxl::WriteToPixelCallbackStage::ProcessRow
  • v0.7-base
  • v0.7rc
  • v0.7.0
  • v1.0-snapshot
  • v0.8-snapshot
  • v0.8.0rc1
  • v0.8.0
  • ...
2023-02-04T00:11:50.601244Z No fix available