Gazer-Star

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.17.5 **Description** The issue arises from a heap-buffer-overflow in the `conn handler` function of `mqtt parser.c` when processing malformed messages. **Recommendations** For NanoMQ version 0.17.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.16.5 **Description** The issue is related to a heap-use-after-free error in the `nano ctx send` function of `nmq mqtt.c`. **Recommendations** For NanoMQ version 0.16.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.