Felix Groebert

**Name of the Vulnerable Software and Affected Versions** Apache Thrift versions 0.9.3 and older **Description** The issue arises from the use of an external formatting tool during code generation, potentially exposing the system to command injection. **Recommendations** For Apache Thrift versions 0.9.3 and older, update to Apache Thrift 0.10.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iWork versions prior to 2.6 for iOS Apple Pages versions prior to 5.6 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted Pages document. **Recommendations** For Apple iWork versions prior to 2.6 for iOS, update to version 2.6 or later. For Apple Pages versions prior to 5.6, update to version 5.6 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iWork versions prior to 2.6 for iOS Apple Keynote versions prior to 6.6 Apple Pages versions prior to 5.6 Apple Numbers versions prior to 3.6 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted document. **Recommendations** For Apple iWork versions prior to 2.6 for iOS, update to version 2.6 or later. For Apple Keynote versions prior to 6.6, update to version 6.6 or later. For Apple Pages versions prior to 5.6, update to version 5.6 or later. For Apple Numbers versions prior to 3.6, update to version 3.6 or later.

**Name of the Vulnerable Software and Affected Versions** ClamAV versions prior to 0.98.6 **Description** The issue allows remote attackers to have an unspecified impact by exploiting a heap out of bounds condition through crafted files, specifically Yoda's crypter or mew packer files. **Recommendations** For versions prior to 0.98.6, update to version 0.98.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ClamAV versions prior to 0.98.6 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, by utilizing a crafted petite packer file. This is related to an incorrect compiler optimization. **Recommendations** For versions prior to 0.98.6, update to version 0.98.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ClamAV versions prior to 0.98.6 **Description** The issue allows remote attackers to have an unspecified impact via a crafted upx packer file. This is related to a heap out of bounds condition. **Recommendations** For versions prior to 0.98.6, update to version 0.98.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libxml2 versions prior to 2.9.2 libxml2-devel version 2.7.6 libxml2-static version 2.7.6 libxml2-debuginfo version 2.7.6 **Description** The issue is related to the `xmlParserHandlePEReference` function in `parser.c` in libxml2, which loads external parameter entities regardless of whether entity substitution or validation is enabled. This allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document. The vulnerability can be exploited remotely and may lead to disruption of confidentiality, integrity, and availability of protected information. **Recommendations** For libxml2 versions prior to 2.9.2, update to version 2.9.2 or later to resolve the issue. For libxml2-devel version 2.7.6, consider disabling the `xmlParserHandlePEReference` function as a temporary workaround until a patch is available. For libxml2-static version 2.7.6, restrict access to the vulnerable module to minimize the risk of exploitation. For libxml2-debuginfo version 2.7.6, avoid using the vulnerable `xmlParserHandlePEReference` function in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 7.1 **Description** The issue allows physically proximate attackers to obtain sensitive FaceTime contact information by using the lock screen for an invalid FaceTime call. **Recommendations** For versions prior to 7.1, update to version 7.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 7.1 Apple TV versions prior to 6.1 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via crafted JPEG2000 data in a PDF document. This is due to a buffer overflow in ImageIO. **Recommendations** For Apple iOS versions prior to 7.1, update to version 7.1 or later. For Apple TV versions prior to 6.1, update to version 6.1 or later.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions through 10.8.5 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted Microsoft Office document. **Recommendations** For Apple OS X versions through 10.8.5, update to a version later than 10.8.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.9.2 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption via a crafted Type 1 font embedded in a document. **Recommendations** For versions prior to 10.9.2, update to version 10.9.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.8.5 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, specifically an application crash, by providing crafted JPEG2000 data in a PDF document. This is due to a buffer overflow in ImageIO. **Recommendations** For versions prior to 10.8.5, update to version 10.8.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.8.5 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, specifically an application crash, by providing crafted JBIG2 data in a PDF document. This is due to a buffer overflow in CoreGraphics. **Recommendations** For versions prior to 10.8.5, update to version 10.8.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ClamAV versions prior to 0.97.8 **Description** The issue is related to an integer underflow in the `cli scanpe` function, which can be triggered by a skewed offset larger than the size of the PE section in a UPX packed executable. This can cause a denial of service, resulting in a crash due to an out-of-bounds read. **Recommendations** For versions prior to 0.97.8, update to version 0.97.8 or later to resolve the issue. As a temporary workaround, consider restricting the scanning of UPX packed executables until the update is applied.

**Name of the Vulnerable Software and Affected Versions** NoseRub versions 0.5.2 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `username` field to the login script, potentially leading to unauthorized access or data manipulation. **Recommendations** For NoseRub versions 0.5.2 and earlier, update to a version later than 0.5.2 to resolve the issue.