OSV - Open Source Vulnerabilities

OSV-2026-823

OSS-Fuzz/libhevc
github.com/ittiam-systems/libhevc.git

Heap-buffer-overflow in ihevcd_fmt_conv_422sp_to_420p

2 days ago

Fix available

OSV-2026-816

OSS-Fuzz/md4c
github.com/mity/md4c

Heap-buffer-overflow in md_process_all_blocks

4 days ago

Fix available

OSV-2026-815

OSS-Fuzz/libhevc
github.com/ittiam-systems/libhevc.git

Heap-buffer-overflow in ihevcd_sao_shift_ctb

4 days ago

Fix available

OSV-2026-812

OSS-Fuzz/libhevc
github.com/ittiam-systems/libhevc.git

Heap-buffer-overflow in ihevcd_fmt_conv_422sp_to_420p

5 days ago

Fix available

OSV-2026-808

OSS-Fuzz/libhevc
github.com/ittiam-systems/libhevc.git

Heap-buffer-overflow in ihevcd_fmt_conv

6 days ago

Fix available

OSV-2026-806

OSS-Fuzz/flyway
github.com/flyway/flyway

Security exception in com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal

24 May

Fix available

OSV-2026-805

OSS-Fuzz/libhevc
github.com/ittiam-systems/libhevc.git

Heap-buffer-overflow in ihevcd_fmt_conv

24 May

Fix available

OSV-2026-803

OSS-Fuzz/openbabel
github.com/openbabel/openbabel.git

Container-overflow in OpenBabel::MDLFormat::ReadV3000Block

24 May

Fix available

OSV-2026-798

OSS-Fuzz/gpac
github.com/gpac/gpac

Heap-use-after-free in ReplaceDEFNode

22 May

Fix available

OSV-2026-796

OSS-Fuzz/gpsd
gitlab.com/gpsd/gpsd

UNKNOWN READ in processXDR

22 May

Fix available

OSV-2026-795

OSS-Fuzz/util-linux
github.com/util-linux/util-linux

Stack-buffer-underflow in probe_dasd_pt

22 May

Fix available

OSV-2026-788

OSS-Fuzz/matio
github.com/tbeu/matio.git

UNKNOWN READ in Mat_VarGetStructsLinear

22 May

Fix available

OSV-2026-785

OSS-Fuzz/libdwarf
github.com/davea42/libdwarf-code

Heap-double-free in _dwarf_load_elf_symtab_symbols

21 May

Fix available

OSV-2026-777

OSS-Fuzz/md4c
github.com/mity/md4c

Heap-buffer-overflow in md_is_link_title

19 May

Fix available

OSV-2026-767

OSS-Fuzz/gpac
github.com/gpac/gpac

Heap-use-after-free in gf_sg_reset

18 May

Fix available

OSV-2024-1464

OSS-Fuzz/poppler
gitlab.freedesktop.org/poppler/poppler.git

Use-of-uninitialized-value in Splash::compositeBackground

18 May

Fix available