You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Lima recently integrated into OSS-Fuzz which resulted in uncovering a bunch of bugs in 3rd-party libraries. This is a tracker issue for these bugs. The report in this PR contains reproducers for all the bugs, so do check that out.
ID
Name
Fixed
ADA-LIMA-FUZZ-2024-1
Stack overflow in 3rd-party yaml parser
No
ADA-LIMA-FUZZ-2024-2
Type confusion in 3rd-party yaml parser
No
ADA-LIMA-FUZZ-2024-3
Memory exhaustion in 3rd-party yaml parser
No
ADA-LIMA-FUZZ-2024-4
Index out of range panic in 3rd-party yaml parser
No
ADA-LIMA-FUZZ-2024-5
Slice bounds out of range in 3rd-party yaml parser
No
ADA-LIMA-FUZZ-2024-6
Integer underflow in 3rd-party yq library
No
ADA-LIMA-FUZZ-2024-7
Index out of range in 3rd-party yq library
No
ADA-LIMA-FUZZ-2024-8
Index out of range in 3rd-party yq library
No
ADA-LIMA-FUZZ-2024-9
Memory exhaustion when evaluating expression
No
ADA-LIMA-FUZZ-2024-10
Divide by zero panic
No
ADA-LIMA-FUZZ-2024-11
Length of string controllable by user input in 3rd-party yq library
No
The text was updated successfully, but these errors were encountered:
Description
Lima recently integrated into OSS-Fuzz which resulted in uncovering a bunch of bugs in 3rd-party libraries. This is a tracker issue for these bugs. The report in this PR contains reproducers for all the bugs, so do check that out.
The text was updated successfully, but these errors were encountered: