Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
OSV-2021-586
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void intra_prediction_angular<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-12-04T00:11:22.240064Z No fix available
OSV-2021-525
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void edge_filtering_chroma_internal<unsigned char>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0
  • v5.82.0-rc1
  • ...
2022-12-04T00:11:21.908888Z No fix available
OSV-2020-876
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in XCFImageFormat::mergeRGBToRGB
  • v5.70.0
  • v5.70.0-rc1
  • v5.71.0
  • v5.71.0-rc1
  • v5.71.0-rc2
  • v5.72.0
  • v5.72.0-rc1
  • ...
2022-12-04T00:11:17.714379Z No fix available
OSV-2021-972
  • OSS-Fuzz/kimageformats
UNKNOWN READ in void mc_chroma<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-12-04T00:11:01.269609Z No fix available
OSV-2021-948
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in residual_coding
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-12-04T00:11:00.998508Z No fix available
OSV-2021-735
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in decode_CABAC_FL_bypass
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2022-12-04T00:10:58.525168Z No fix available
OSV-2020-868
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in fetchARGB32ToRGBA64PM_avx2
  • v5.70.0
  • v5.70.0-rc1
  • v5.71.0
  • v5.71.0-rc1
  • v5.71.0-rc2
  • v5.72.0
  • v5.72.0-rc1
  • ...
2022-12-04T00:08:59.351608Z No fix available
OSV-2022-37
  • OSS-Fuzz/tdengine
Heap-buffer-overflow in stringProcess
  • ver-2.5.0.0
  • ver-2.5.0.1
  • ver-2.6.0.0
  • ver-2.6.0.1
  • ver-2.6.0.3-kh
  • ver-2.6.0.4
  • ver-2.6.0.6
  • ...
2022-12-03T00:47:48.628215Z No fix available
OSV-2020-866
  • OSS-Fuzz/icu
UNKNOWN READ in icu_64::UCharsTrie::branchNext
  • cldr/2020-09-22
  • cldr/2020-10-21
  • cldr/2020-12-03b
  • cldr/2021-02-17
  • cldr/2021-03-09
  • release-65-1
  • release-65-rc
  • ...
2022-12-03T00:37:48.052176Z No fix available
OSV-2022-403
  • OSS-Fuzz/libredwg
Heap-use-after-free in dwg_add_handleref
  • 0.12.4.4590
  • 0.12.4.4598
  • 0.12.4.4601
  • 0.12.4.4606
  • 0.12.4.4607
  • 0.12.4.4608
  • 0.12.4.4613
  • ...
2022-12-03T00:15:46.871208Z Fix available
OSV-2022-657
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dynapi_set_helper
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2022-12-02T00:15:28.037257Z No fix available
OSV-2022-653
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free_common_entity_data
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2022-12-02T00:15:23.545454Z No fix available
OSV-2022-372
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_encode_VERTEX_2D
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2022-12-02T00:15:07.258376Z No fix available
OSV-2022-388
  • OSS-Fuzz/libredwg
Segv on unknown address in dwg_ref_get_object
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2022-12-02T00:15:01.740054Z No fix available
OSV-2022-714
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dynapi_set_helper
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2022-12-02T00:14:51.447696Z No fix available
OSV-2022-654
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_geojson_feature
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2022-12-02T00:14:47.904228Z No fix available