Crash&Poc Report
报告记录&poc:
最近fuzz出了不少crash,提交记录git:
https://github.com/gandalf4a/crash_report
整理如下:
不定期持续更新
vim
heap-use-after-free
CVE-2023-48706: https://github.com/vim/vim/security/advisories/GHSA-c8qm-x72m-q53q
macOS
SEGV
https://security.apple.com/reports/OE1924480424134
https://security.apple.com/reports/OE1924480845324
https://security.apple.com/reports/OE1924480429154
https://security.apple.com/reports/OE1924480517883
https://security.apple.com/reports/OE1924480320443
https://security.apple.com/reports/OE1924500326942
vlc
SEGV
https://forum.videolan.org/viewtopic.php?t=163396
radare2
r2
heap-buffer-overflow
CVE-2023-5686: https://huntr.dev/bounties/bbfe1f76-8fa1-4a8c-909d-65b16e970be0
CVE-2023-47016: https://github.com/radareorg/radare2/issues/22349
global-buffer-overflow
CVE-2023-46569:https://github.com/radareorg/radare2/issues/22333
CVE-2023-46570:https://github.com/radareorg/radare2/issues/22334
duktape
stack-overflow
https://github.com/svaarala/duktape/issues/2548
https://github.com/svaarala/duktape/issues/2549
https://github.com/svaarala/duktape/issues/2550
https://github.com/svaarala/duktape/issues/2551
https://github.com/svaarala/duktape/issues/2552
https://github.com/svaarala/duktape/issues/2553
6: https://www.huntr.dev/bounties/444d8c24-c2b0-4a48-b076-f964c6ce5482
SEGV
2: https://www.huntr.dev/bounties/e2a1370b-fe6d-42cc-be51-fa9d25a6369d
gpac
MP4Box
heap-use-after-free
https://github.com/gpac/gpac/issues/2611
https://www.huntr.dev/bounties/e55961c9-ad52-437b-b796-9546a8f124e7/
double-free
https://github.com/gpac/gpac/issues/2612
stack-buffer-overflow
https://github.com/gpac/gpac/issues/2613
2: https://www.huntr.dev/bounties/f7f9171e-661f-471f-aa2c-fedd23ff1b52/
heap-buffer-overflow
https://github.com/gpac/gpac/issues/2614
https://github.com/gpac/gpac/issues/2615
https://github.com/gpac/gpac/issues/2616
https://github.com/gpac/gpac/issues/2617
https://github.com/gpac/gpac/issues/2618
https://github.com/gpac/gpac/issues/2619
4: https://www.huntr.dev/bounties/b514352a-d64b-4230-936d-612eb96ce105/
SEGV
https://github.com/gpac/gpac/issues/2620
https://github.com/gpac/gpac/issues/2621
https://github.com/gpac/gpac/issues/2622
https://github.com/gpac/gpac/issues/2623
https://github.com/gpac/gpac/issues/2624
https://github.com/gpac/gpac/issues/2625
https://github.com/gpac/gpac/issues/2626
CVE-2023-5595:3-https://www.huntr.dev/bounties/0064cf76-ece1-495d-82b4-e4a1bebeb28e/
3: https://huntr.dev/bounties/dd176822-178f-43b0-bbeb-20390cdb623e/
memcpy-param-overlap
https://www.huntr.dev/bounties/d3290105-c964-4419-82d9-89782b3b2796/
FPE
2: https://www.huntr.dev/bounties/4d3dda71-1d2a-42ba-8f2e-ef83db85f8a2/
tsMuxer
SEGV
https://github.com/justdan96/tsMuxer/issues/783
heap-buffer-overflow
https://github.com/justdan96/tsMuxer/issues/784
https://github.com/justdan96/tsMuxer/issues/785
https://github.com/justdan96/tsMuxer/issues/786
https://github.com/justdan96/tsMuxer/issues/787
https://github.com/justdan96/tsMuxer/issues/788
2: https://www.huntr.dev/bounties/0a491f4d-b842-4cb9-aad6-5781fbea3320/
jerryscript
jerry
SEGV
https://github.com/jerryscript-project/jerryscript/issues/5101
https://github.com/jerryscript-project/jerryscript/issues/5102
global-buffer-overflow
https://www.huntr.dev/bounties/509c05d1-c0a9-4b4e-90f4-def498ab2ae9/
Mozilla
Spidermonkey
SEGV
https://bugzilla.mozilla.org/show_bug.cgi?id=1856646
https://bugzilla.mozilla.org/show_bug.cgi?id=1856649
https://bugzilla.mozilla.org/show_bug.cgi?id=1860721
Webkit
JavaScriptCore
memory leaks
https://bugs.webkit.org/show_bug.cgi?id=262370
libpng
pngimage
heap-buffer-overflow
https://github.com/glennrp/libpng/issues/481
libtiff
tiffcrop
heap-buffer-overflow & heap-use-after-free & SIGSEGV
https://gitlab.com/libtiff/libtiff/-/issues/573
heap-buffer-overflow
https://gitlab.com/libtiff/libtiff/-/issues/563
https://gitlab.com/libtiff/libtiff/-/issues/562
https://gitlab.com/libtiff/libtiff/-/issues/561
https://gitlab.com/libtiff/libtiff/-/issues/564
https://gitlab.com/libtiff/libtiff/-/issues/565
https://gitlab.com/libtiff/libtiff/-/issues/566
https://gitlab.com/libtiff/libtiff/-/issues/567
https://gitlab.com/libtiff/libtiff/-/issues/568
https://gitlab.com/libtiff/libtiff/-/issues/569
xpdfreader
pdftotext
stack-overflow
https://forum.xpdfreader.com/viewtopic.php?t=42378
https://forum.xpdfreader.com/viewtopic.php?t=42376
https://forum.xpdfreader.com/viewtopic.php?t=42377
https://forum.xpdfreader.com/viewtopic.php?t=42379