Results of fuzzing activities

libofx Segmentation fault with crafted sample in lib/ofx_containers_misc.cpp OfxPushUpContainer::add_attribute
https://github.com/libofx/libofx/issues/11

libofx CVE-2017-14731: ofxdump heap-buffer-overflow
https://github.com/libofx/libofx/issues/10
https://nvd.nist.gov/vuln/detail/CVE-2017-14731
https://github.com/libofx/libofx/commit/fad8418f34094de42e1307113598e0e8bee0a2bd

libwpd: Segmentation fault in src/lib/WPXTable.h:89 WPXTableList::operator

LAME: buffer overflow in HIP decoder

MongoDB: multiple reported issues

CVE-2017-14348: LibRaw 0.18.3 Heap-based buffer overflow in LibRaw::processCanonCameraInfo
https://github.com/LibRaw/LibRaw/issues/100
https://github.com/LibRaw/LibRaw/commit/8303e74b0567806dd5f16fc39aab70fe928de1a2

CVE-2017-13049: The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().
DSA-3971-1
https://github.com/the-tcpdump-group/tcpdump/commit/aa0858100096a3490edf93034a80e66a4d61aad5

libicns heap-buffer-overflow icns2png.c:359 ExtractAndDescribeIconFamilyFile
https://sourceforge.net/p/icns/bugs/18/
https://sourceforge.net/p/icns/code/ci/bdba9dfeeb9c5c6e474d02694baa47ee083fbe72/

LAME global-buffer-overflow mpglib/layer2.c:144 II_step_one in 2017-08-22 CVS
https://sourceforge.net/p/lame/bugs/470/

LAME global-buffer-overflow mpglib/layer3.c:1244 III_i_stereo in 2017-08-19 CVS
https://sourceforge.net/p/lame/bugs/468/

LAME stack-buffer-overflow mpglib/layer3.c:945 III_dequantize_sample in 2017-08-19 CVS
https://sourceforge.net/p/lame/bugs/467/

LAME stack-buffer-overflow mpglib/layer3.c:1264 III_i_stereo in 2017-08-18 CVS
https://sourceforge.net/p/lame/bugs/466/

LAME global-buffer-overflow mpglib/layer2.c:144 II_step_one in 2017-08-18 CVS
https://sourceforge.net/p/lame/bugs/465/

LAME double-free in 2017-08-18 CVS
https://sourceforge.net/p/lame/bugs/464/

giflib Floating point exception in giftext utility in function PrintCodeBlock
https://sourceforge.net/p/giflib/bugs/107/

exifprobe multiple vulnerabilities
https://github.com/hfiguiere/exifprobe/issues/9
https://github.com/hfiguiere/exifprobe/issues/10
https://github.com/hfiguiere/exifprobe/issues/11

CVE-2017-5340: PHP 7 Use of uninitialized memory in unserialize
Fixed in 7.1.1 and 7.0.15.
https://bugs.php.net/bug.php?id=73832

CVE-2016-9448: LibTIFF invalid read of size 1 in TIFFFetchNormalTag
http://bugzilla.maptools.org/show_bug.cgi?id=2593

CVE-2016-9532: LibTIFF tiffcrop tool heap buffer overflow via writeBufferToSeparateStrips
http://bugzilla.maptools.org/show_bug.cgi?id=2592
DSA-3762-1

CVE-2016-5102: libtiff gif2tiff tool buffer overflow in readgifimage()
http://bugzilla.maptools.org/show_bug.cgi?id=2552

CVE-2016-3977: giflib gif2rgb heap buffer overflow
https://sourceforge.net/p/giflib/bugs/87/
https://sourceforge.net/p/giflib/code/ci/ea8dbc5786862a3e16a5acfa3d24e2c2f608cd88/

CVE-2016-3982: optipng heap buffer overflow pngxrbmp.c bmp_read_rows
https://sourceforge.net/p/optipng/bugs/56/
Debian DSA-3546 Ubuntu USN-2951-1

CVE-2016-3981: optipng heap buffer overflow pngxrbmp.c bmp_rle4_fread
https://sourceforge.net/p/optipng/bugs/57/
Debian DSA-3546 Ubuntu USN-2951-1

poppler: segmentation fault in XRef::getEntry at XRef.cc:1317
https://bugs.debian.org/779699

metacam: SIGBUS, Bus error at dataifdentry.cc
https://bugs.debian.org/779697

metacam: segmentation fault at getRATIONAL dpyfuncs.cc:938
https://bugs.debian.org/779696

metacam: segmentation fault in tiffRATIONAL::normalize at rationals.cc:40
https://bugs.debian.org/779695

exifprobe: denial of service
https://bugs.debian.org/779527

exifprobe: double free or corruption
https://bugs.debian.org/779525

dmg2img: denial of service issue
https://bugs.debian.org/778829

dmg2img: convert_char8 out of bounds, segmentation fault at dmg2img.h:87
https://bugs.debian.org/778827

dmg2img: ADC decompress segmentation fault at adc.c:66
https://bugs.debian.org/778819

dmg2img: invalid read, segmentation fault at dmg2img.c:390
https://bugs.debian.org/778814

lame: segmentation fault at get_audio.c:865
https://bugs.debian.org/778703

lame: fill_buffer_resample segmentation fault
https://bugs.debian.org/778529

PyPDF2: Denial of service
https://github.com/mstamy2/PyPDF2/issues/184
Fixed in Debian 8.6 point update with a patch.

enzyme: multiple input handling issues
Diaoul/enzyme/9 Diaoul/enzyme/10 Diaoul/enzyme/11
Diaoul/enzyme/12 Diaoul/enzyme/13 Diaoul/enzyme/14
Diaoul/enzyme/15 Diaoul/enzyme/16 Diaoul/enzyme/17
Diaoul/enzyme/18 Diaoul/enzyme/19 Diaoul/enzyme/20
Diaoul/enzyme/21 Diaoul/enzyme/22