Wed Jul 17 2024 23:46:25 PDT
  • Keywords: oss-fuzz
66 bugs found.
ID Type Summary Product Comp Assignee Status Resolution Updated
1473570 Integer-overflow · lut_interp_linear16 Core Graphics: Color Mana aosmond NEW --- 2022-10-11
1465075 Two more divide-by-zero crashes in qcms Core Graphics: Color Mana nical.bugzilla NEW --- 2022-10-11
1444155 Intermittent Assertion failure: state_ == Idle || state_ == WaitingInterrupted, at mozilla-central/js/src/builtin/AtomicsObject.cpp:844 Core JavaScript Engine nobody NEW --- 2022-10-11
1566509 division by zero [@ build_output_lut] Core Graphics: Color Mana nobody NEW --- 2022-10-11
1566510 division by zero in [@ compute_precache] Core Graphics: Color Mana nobody NEW --- 2022-10-11
1566512 signed integer overflow in [@ lut_inverse_interp16] Core Graphics: Color Mana nobody NEW --- 2022-10-11
1577531 IPC: signed integer overflow: [@RegionBuilder<mozilla::gfx::IntRegionTyped<mozilla::gfx::UnknownUnits> >::OrWith] Core Graphics: Layers nobody NEW --- 2022-10-11
1577562 IPC: crash [@mozilla::layers::ContentCompositorBridgeParent::RecvInitPCanvasParent] Core Graphics: Layers nobody NEW --- 2023-01-26
1590095 IPC: crash [@mozilla::ipc::Endpoint<mozilla::layers::PCanvasParent>::Bind] Core Graphics: Canvas2D nobody NEW --- 2022-10-11
1605535 Assertion failure: mWorkerThread == PR_GetCurrentThread() (not on worker thread!), at objdir-ff-ubsan/dist/include/mozilla/ipc/MessageChannel.h:555 Core Graphics: Layers nobody NEW --- 2022-10-11
1677590 stack-buffer-overflow in [@ sdp_parse_error] Core WebRTC: Signaling drno RESO FIXE 2022-01-14
1598472 MOZ_CRASH("Origin must be available when deserialized") impedes fuzzing Core DOM: Content Process haftandilian RESO FIXE 2020-03-31
1415883 Heap-buffer-overflow READ 8 with async generators Core JavaScript Engine jdemooij RESO FIXE 2019-08-22
1435796 AddressSanitizer: global-buffer-overflow READ of size 26 | DumpStringRepresentation Core JavaScript Engine jdemooij RESO FIXE 2020-02-28
1506969 Assertion failure: startOfChunkBytes < uncompressedBytes (chunk must refer to bytes not exceeding |uncompressedBytes|), at mozilla-central/js/src/vm/Compression.h:85 Core JavaScript Engine jwalden RESO FIXE 2019-08-22
1415291 Heap-buffer-overflow READ 8 · js::WasmTableObject::getImpl Core JavaScript Engine mail RESO FIXE 2019-08-22
1437534 Assertion failure: fallibleScope_ ([OOM] Cannot allocate a new chunk in an infallible scope.), at ds/LifoAlloc.cpp:70 Core JavaScript Engine mail RESO FIXE 2019-08-22
1437546 Assertion failure: error_, at mozilla-central/js/src/wasm/WasmValidate.cpp:54 Core JavaScript Engine mail RESO FIXE 2019-08-22
1605530 member call on null pointer of type 'mozilla::dom::BrowsingContext' in uriloader/exthandler/ExternalHelperAppParent.cpp:83 Firefox File Handling matt.woodrow RESO DUPL 2020-02-28
1416794 MOZ_CRASH in js::jit::IonBuilder::inlineScriptedCall (with --ion-eager) Core JavaScript Engine: J nicolas.b.pierron RESO FIXE 2019-08-22
1589769 oss-fuzz Spidermonkey builds busted Core JavaScript Engine nobody RESO FIXE 2021-06-23
1612573 crash near null in [@ mozilla::dom::ExternalHelperAppParent::Init] Core DOM: Navigation nobody RESO DUPL 2020-02-14
1612568 MOZ_CRASH: Attempt to deserialize absent WindowContext Core DOM: Content Process afarre RESO FIXE 2020-02-20
1605536 member call on null pointer of type 'mozilla::dom::BrowsingContext' in dom/ipc/ContentParent.cpp:5927 Core Audio/Video: Playbac alwu RESO FIXE 2020-01-14
1577572 IPC: crash [@mozilla::dom::ipc::SharedStringMap::SharedStringMap] Core DOM: Security ckerschb RESO FIXE 2021-07-08
1605514 MOZ_CRASH: Attempt to deserialize absent BrowsingContext Core DOM: Content Process nika RESO FIXE 2020-01-10
1585105 IPC: crash [@mozilla::dom::BrowsingContext::Id()] Core DOM: Navigation nobody RESO WORK 2019-11-28
1580317 UBSan runtime error: [@mozilla::image::ShouldUseHeap] Core Graphics: ImageLib tnikkel RESO FIXE 2022-01-10
1462353 Assertion failure: data.maxArgv[0].isObject() || data.maxArgv[0].isMagic(JS_UNINITIALIZED_LEXICAL), at mozilla-central/js/src/jit/BaselineJIT.cpp:135 Core JavaScript Engine: J jdemooij RESO FIXE 2019-08-22
1444894 Assertion failure: zone->isGCSweepingOrCompacting(), at /src/mozilla-central/js/src/vm/TypeInference.cpp:4170 Core JavaScript: GC jorendorff RESO FIXE 2022-05-24
1467769 Use-of-uninitialized-value · clamp_float Core Graphics: Color Mana nical.bugzilla RESO FIXE 2022-08-10
1486191 limit SdpParser attribute list length for fuzzing Core WebRTC nobody RESO FIXE 2019-08-22
1566503 use-of-uninitialized-value in [@qcms_transform_module_matrix] Core Graphics: Color Mana nobody RESO DUPL 2020-02-26
1566508 crash in [@ lut_inverse_interp16] Core Graphics: Color Mana nobody RESO DUPL 2019-10-30
1566515 signed integer overflow in [@ lut_interp_linear16] Core Graphics: Color Mana nobody RESO DUPL 2019-10-18
1577575 IPC: crash [@mozilla::layers::CompositorManagerParent::RecvReportMemory] Core Graphics: Layers nobody RESO INCO 2023-02-27
1577578 IPC: crash [@gfxPlatformFontList::SetupFamilyCharMap] Core Graphics: Text nobody RESO WONT 2019-12-21
1577581 IPC: crash [@mozilla::places::History::History()] Toolkit Places nobody RESO WONT 2019-09-17
1590090 IPC: crash [@mozilla::jsipc::CrossProcessCpowHolder::~CrossProcessCpowHolder] Core DOM: Content Process nobody RESO WONT 2020-04-20
1590099 IPC: crash [@mozilla::layers::CompositorManagerParent::RecvReportMemory] Core Graphics: Layers nobody RESO INCO 2021-07-29
1605533 member call on null pointer of type 'mozilla::dom::BrowsingContext' in dom/ipc/ContentParent.cpp:5794 Core DOM: Content Process nobody RESO DUPL 2020-02-28
1614210 member call on null pointer of type 'mozilla::widget::nsWaylandDisplay' in widget/gtk/WaylandDMABufSurface.cpp:229 Core Graphics: Layers stransky RESO FIXE 2020-02-13
1578458 MOZ_CRASH("Origin must be available when deserialized") on malicious IPC input [@mozilla::ipc::PrincipalInfoToPrincipal] Core DOM: Content Process nobody RESO DUPL 2024-01-16
1416809 Stack overflow in async generators Core JavaScript Engine andrebargull RESO FIXE 2019-08-22
1465081 Null-dereference READ · AppendNameInBytecode Core JavaScript: WebAssem bugzilla RESO FIXE 2019-08-22
1577558 IPC: crash [@mozilla::AntiTrackingCommon::SaveFirstPartyStorageAccessGrantedForOriginOnParentProcess] Core Privacy: Anti-Tracki ehsan.akhgari RESO FIXE 2022-01-10
1577563 IPC: crash [@mozilla::AntiTrackingCommon::CreateStoragePermissionKey] Core Privacy: Anti-Tracki ehsan.akhgari RESO FIXE 2022-01-10
1580546 IPC: crash [@mozilla::AntiTrackingCommon::StoreUserInteractionFor] Core Privacy: Anti-Tracki ehsan.akhgari RESO FIXE 2020-01-21
1438569 Assertion failure: obj->isSingleton(), at mozilla-central/js/src/builtin/DataViewObject.cpp:78 Core JavaScript Engine jdemooij RESO FIXE 2019-08-22
1506968 Assertion failure: !isPhi(), at mozilla-central/js/src/jit/MIR.h:14290 Core JavaScript Engine: J jdemooij RESO FIXE 2019-08-22
1668925 heap-buffer-overflow in [@ qcms::chain::qcms_modular_transform_create_lut] Core Graphics: Color Mana jmuizelaar RESO DUPL 2024-06-07
1463424 Two divide-by-zero crashes in qcms Core Graphics: Color Mana nical.bugzilla RESO FIXE 2019-08-22
1464039 Heap-buffer-overflow READ 4 · qcms_transform_module_clut_only Core Graphics: Color Mana nical.bugzilla RESO FIXE 2019-08-22
1427764 Assertion failure: fallibleScope_ ([OOM] Cannot allocate a new chunk in an infallible scope.) · js::LifoAlloc::newChunkWithCapacity Core JavaScript Engine: J nicolas.b.pierron RESO FIXE 2019-08-22
1415183 wild-write in JS with WASM Core JavaScript Engine: J nobody RESO INVA 2020-01-09
1420915 Assertion failure: [unhandlable oom] ShellAllocationMetadataBuilder::build, at mozilla-central/js/src/jscntxt.cpp:1651 Core JavaScript Engine nobody RESO INVA 2020-01-09
1437536 Assertion failure: fun->isInterpreted() Core JavaScript Engine nobody RESO DUPL 2021-10-26
1440762 null defref in JIT'd code Core JavaScript Engine: J nobody RESO DUPL 2020-12-18
1456460 Assertion failure: !JS::CurrentThreadIsHeapMinorCollecting(), at mozilla-central/js/src/vm/TypeInference.cpp:4191 Core JavaScript: GC nobody RESO DUPL 2020-12-18
1463421 Assertion failure: !JS::CurrentThreadIsHeapCollecting(), at mozilla-central/js/src/gc/Marking.cpp:3650 Core JavaScript: GC nobody RESO DUPL 2019-08-22
1526932 Assertion failure: isThrowingOutOfMemory(), at mozilla-central/js/src/vm/JSContext.cpp:1162 Core JavaScript Engine nobody RESO DUPL 2019-08-22
1533873 Assertion failure: heap == gc::TenuredHeap, at mozilla-central/js/src/vm/JSObject.cpp:4288 Core JavaScript Engine: J nobody RESO FIXE 2019-08-22
1577552 IPC: crash [@mozilla::dom::ContentParent::RecvAttachBrowsingContext] Core DOM: Content Process nobody RESO DUPL 2019-11-04
1586162 FLAC: heap-buffer-overflow [@FLAC__bitreader_read_rice_signed_block] Core Audio/Video: Playbac nobody RESO INVA 2020-01-09
1605525 Assertion failure: fontList (gfxPlatformFontList not initialized?) Core Graphics: Text nobody RESO WONT 2020-01-13
1730214 oss-fuzz: dav1d:dav1d_fuzzer_mt: Heap-buffer-overflow in backup_lpf Core Audio/Video: Playbac nobody RESO WORK 2021-10-26
66 bugs found.
REST | CSV | Feed | iCalendar
Change Columns 		Edit Search