Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
OSV-2020-876
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in XCFImageFormat::mergeRGBToRGB
  • v5.70.0
  • v5.70.0-rc1
  • v5.71.0
  • v5.71.0-rc1
  • v5.71.0-rc2
  • v5.72.0
  • v5.72.0-rc1
  • ...
2022-08-15T00:15:45.066081Z No fix available
OSV-2021-972
  • OSS-Fuzz/kimageformats
UNKNOWN READ in void mc_chroma<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-08-14T00:15:00.960515Z No fix available
OSV-2021-948
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in residual_coding
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-08-14T00:14:59.088605Z No fix available
OSV-2021-735
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in decode_CABAC_FL_bypass
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-08-14T00:14:56.289542Z No fix available
OSV-2021-586
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void intra_prediction_angular<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-08-14T00:14:50.320197Z No fix available
OSV-2021-525
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void edge_filtering_chroma_internal<unsigned char>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0
  • v5.82.0-rc1
  • ...
2022-08-14T00:14:49.256765Z No fix available
OSV-2021-451
  • OSS-Fuzz/kimageformats
Heap-buffer-overflow in void apply_sao_internal<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0
  • v5.82.0-rc1
  • ...
2022-08-14T00:14:41.208987Z No fix available
OSV-2021-1475
  • OSS-Fuzz/kimageformats
Heap-buffer-overflow in derive_spatial_luma_vector_prediction
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-08-14T00:14:28.330102Z No fix available
OSV-2020-868
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in fetchARGB32ToRGBA64PM_avx2
  • v5.70.0
  • v5.70.0-rc1
  • v5.71.0
  • v5.71.0-rc1
  • v5.71.0-rc2
  • v5.72.0
  • v5.72.0-rc1
  • ...
2022-08-14T00:14:03.739081Z No fix available
OSV-2022-410
  • OSS-Fuzz/assimp
Heap-buffer-overflow in Assimp::ASE::Parser::ParseLV1SoftSkinBlock
  • 5.2.0
  • v5.1.0
  • v5.1.0.rc1
  • v5.1.1
  • v5.1.2
  • v5.1.3
  • v5.1.4
  • ...
2022-08-13T00:17:10.220371Z Fix available
OSV-2022-705
  • OSS-Fuzz/net-snmp
Heap-buffer-overflow in netsnmp_memdup
  • See details.
2022-08-13T00:00:24.016796Z No fix available
OSV-2020-866
  • OSS-Fuzz/icu
UNKNOWN READ in icu_64::UCharsTrie::branchNext
  • cldr/2020-09-22
  • cldr/2020-10-21
  • cldr/2020-12-03b
  • cldr/2021-02-17
  • cldr/2021-03-09
  • release-65-1
  • release-65-rc
  • ...
2022-08-12T00:27:44.688608Z No fix available
OSV-2022-702
  • OSS-Fuzz/net-snmp
Heap-double-free in ada_fuzz_header.h
  • See details.
2022-08-12T00:00:49.994628Z Fix available
OSV-2021-820
  • OSS-Fuzz/qemu
UNKNOWN READ in virtio_gpu_disable_scanout
  • v6.1.0-rc0
  • v6.1.0-rc1
  • v6.1.0-rc2
  • v6.1.0-rc3
  • v6.1.0-rc4
  • v6.1.0
  • v6.1.1
  • ...
2022-08-11T00:28:39.035445Z No fix available
OSV-2021-1628
  • OSS-Fuzz/net-snmp
Stack-buffer-overflow in sprint_realloc_hinted_integer
  • v5.9.2
  • v5.9.2.pre1
  • v5.9.2.rc1
  • v5.9.2.rc2
2022-08-10T00:21:22.382635Z Fix available
OSV-2022-608
  • OSS-Fuzz/libjxl
Heap-use-after-free in jxl::WriteToPixelCallbackStage::ProcessRow
  • v0.7-base
  • v0.7rc
2022-08-10T00:20:34.660682Z No fix available