Hi! We've been fuzzing nDPI with sydr-fuzz security predicates and numeric truncation error was found in tls.c:1010.
In ndpi_search_tls_tcp function we have found this error on line 1010. On th...

Hi! We've been searching errors in tensorflow with sydr-fuzz security predicates and have found an error of unsigned integer overflow in wav_io.cc:297.
The error appears in computing the expect...

Hi! We've been fuzzing torchvision project with sydr-fuzz.
We've found a heap buffer overflow error at source_range_serialization.cpp:73 in pytorch project.
The error occurs because there i...

Hi! We've been fuzzing torchvision project with sydr-fuzz.
We've found a heap buffer overflow error at png.c:90 in libpng project.
The error occurred because in decode_png.cpp in the first ...

@vstinner you've recently commited to this module, would you have time to take a look at the fix I am proposing? :)


Issue: gh-106831

Hi! We've been fuzzing unbound with sydr-fuzz security predicates and we found numeric truncation error in str2wire.c:1978 and str2wire.c:2023.
In function sldns_str2wire_nsec_buf on line 2...

Hi! We've been fuzzing libpcap with sydr-fuzz security predicates and we found numeric truncation error in pcap-util.c:374.
In function swap_nflog_header on line 374 variable size has type uint...

Denoscription
Hi! We've been fuzzing pytorch with sydr-fuzz and found error of out of bounds access in torch::jit module.
pytorch version: 18bcf62
The error occurs in import_source.cpp:560 wh...

Hi, A static analyzer reported a possible pfree(NULL) in be_tls_open_server(). Here is a fix. Also handle an error from X509_NAME_print_ex(). …

Open-source engine for Heroes of Might and Magic III - Fixed some issues found by pvs by ProjectMutilation · Pull Request #2957 · vcmi/vcmi

Denoscription We have two pointer pMT dereferences: runtime/src/coreclr/vm/typedesc.cpp Line 888 in cc2670b GetModule()->GetAssembly()->ThrowTypeLoadException(pInternalImport, pMT->GetCl(), ...

Fix errors pointed out by static analyzer

A static analyzer found some errors -

1) Deref of Null - admin.c
>Return value of a function 'pktbuf_dynamic' is dereferenced at admin.c:245 without checking for NULL, bu...

The "orafce" project implements in Postgres some of the functions from the Oracle database that are missing (or behaving differently).Those functions were verified on Oracle 10g, and the module is useful for production work. - Fix a condition to make code…

Fixing the following bugs:

Dynamically allocated decompress_tmp_buff is not freed when returning function on error.
fclose(toast_rel_fp) might be called when toast_rel_fp is NULL, which is an unde...

I tried to fix "if (hashSection->hasho_flag & LH_UNUSED_PAGE)" condition. As LH_UNUSED_PAGE is 0 this condition is always false. As I understand hash index page is ...

Denoscription Dynamic memory, referenced by res, is allocated at phpdbg_utils.c:154 : php-src/sapi/phpdbg/phpdbg_utils.c Lines 146 to 155 in cde956a PHPDBG_API char *phpdbg_resolve_path(const char *p...

Pointer GenTree::gtGetOp1(...), that can have only NULL value, is passed as 1st parameter in call to function LinearScan::BuildUse runtime/src/coreclr/jit/lsraxarch.cpp Lines 211 to 216 in e40b3ab ...