Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
OSV-2022-295
  • OSS-Fuzz/grok
Use-of-uninitialized-value in unsigned long grk::N_SSE4::vscheduler<grk::N_SSE4::DecompressDcShiftIrrev>
  • v9.7.4
  • v9.7.5.debian
  • v9.7.6
  • v9.7.7
  • v9.7.8
2022-06-20T00:04:22.782581Z No fix available
OSV-2021-677
  • OSS-Fuzz/grok
Heap-buffer-overflow in grk::FileFormatDecompress::apply_palette_clr
  • v7.6.6
  • v7.6.6-3
  • v7.6.6.debian
  • v8.0.0
  • v8.0.1
  • v8.0.2
  • v8.0.3
  • ...
2022-06-20T00:03:59.513957Z No fix available
OSV-2021-448
  • OSS-Fuzz/grok
Use-of-uninitialized-value in std::__1::__packaged_task_func<std::__1::__bind<grk::mct::decompress_irrev
  • v8.0.1
  • v8.0.2
  • v8.0.3
  • v9.0.0
  • v9.1.0
  • v9.2.0
  • v9.3.0
  • ...
2022-06-20T00:03:57.556692Z No fix available
OSV-2021-426
  • OSS-Fuzz/grok
Use-of-uninitialized-value in std::__1::__packaged_task_func<std::__1::__bind<grk::mct::decompress_irrev
  • v8.0.1
  • v8.0.2
  • v8.0.3
  • v9.0.0
  • v9.1.0
  • v9.2.0
  • v9.3.0
  • ...
2022-06-20T00:03:56.264722Z No fix available
OSV-2021-1344
  • OSS-Fuzz/grok
Heap-buffer-overflow in openhtj2k::T1OpenHTJ2K::decompress
  • v9.5.0
  • v9.5.0.debian
  • v9.6.0
  • v9.7.0
  • v9.7.1
  • v9.7.2
  • v9.7.3
  • ...
2022-06-20T00:03:50.855371Z No fix available
OSV-2022-336
  • OSS-Fuzz/grok
Use-of-uninitialized-value in grk::N_SCALAR::DecompressIrrev::vtrans
  • v9.7.5.debian
  • v9.7.6
  • v9.7.7
  • v9.7.8
2022-06-20T00:02:23.519514Z No fix available
OSV-2021-1820
  • OSS-Fuzz/radare2
Heap-buffer-overflow in r_str_utf8_codepoint
  • 4.4.0
  • 4.5.1
  • 5.0.0
  • 5.1.0
  • 5.1.1
  • 5.2.0
  • 5.2.1
  • ...
2022-06-19T00:00:52.240913Z Fix available
OSV-2022-217
  • OSS-Fuzz/fluent-bit
Stack-buffer-overflow in msgpack_sbuffer_write
  • unstable-master
  • v1.9.0
  • v1.9.0-ci-test-1
  • v1.9.0-rc3
  • v1.9.0-rc4
  • v1.9.1
  • v1.9.2
  • ...
2022-06-18T00:05:45.447269Z No fix available
OSV-2022-144
  • OSS-Fuzz/fluent-bit
Segv on unknown address in onig_free_body
  • ci-release-test
  • unstable
  • unstable-master
  • v1.9.0
  • v1.9.0-ci-test-1
  • v1.9.0-rc1
  • v1.9.0-rc2
  • ...
2022-06-18T00:05:39.561324Z No fix available
OSV-2022-489
  • OSS-Fuzz/freeradius
Heap-buffer-overflow in fr_size_from_str
  • See details.
2022-06-17T00:00:29.739073Z Fix available
OSV-2022-487
  • OSS-Fuzz/duckdb
Heap-use-after-free in duckdb::Planner::CreatePlan
  • See details.
2022-06-17T00:00:15.351999Z Fix available
OSV-2022-34
  • OSS-Fuzz/c-blosc2
Heap-buffer-overflow in LZ4_decompress_safe
  • v2.0.0
  • v2.0.0-rc2
  • v2.0.0.rc1
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • ...
2022-06-16T00:04:26.487538Z Fix available
OSV-2022-4
  • OSS-Fuzz/c-blosc2
Memcpy-param-overlap in ZSTD_createDDict
  • v2.0.0
  • v2.0.0-rc2
  • v2.0.0.rc1
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • ...
2022-06-16T00:04:18.418945Z Fix available
OSV-2021-997
  • OSS-Fuzz/c-blosc2
Heap-buffer-overflow in ZSTD_createDDict_advanced
  • v2.0.0
  • v2.0.0-rc2
  • v2.0.0.rc1
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • ...
2022-06-16T00:04:17.868354Z Fix available
OSV-2021-897
  • OSS-Fuzz/c-blosc2
Heap-buffer-overflow in ZSTD_decompressMultiFrame
  • v2.0.0
  • v2.0.0-rc2
  • v2.0.0.rc1
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • ...
2022-06-16T00:04:17.202124Z Fix available
OSV-2021-1791
  • OSS-Fuzz/c-blosc2
Heap-buffer-overflow in ZSTD_createDDict
  • v2.0.0
  • v2.0.0-rc2
  • v2.0.0.rc1
  • v2.0.1
  • v2.0.2
  • v2.0.3
  • v2.0.4
  • ...
2022-06-16T00:04:04.371193Z Fix available