Jose Duart

**Name of the Vulnerable Software and Affected Versions** e2fsprogs versions prior to 1.42.12 **Description** The issue is related to a heap-based buffer overflow in the closefs.c file within the libext2fs library. This allows local users to execute arbitrary code by causing a crafted block group descriptor to be marked as dirty. The problem exists due to an incomplete fix for a previous issue. **Recommendations** For versions prior to 1.42.12, update to version 1.42.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the libext2fs library to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** e2fsprogs versions prior to 1.42.12 **Description** The issue is related to a heap-based buffer overflow in the libext2fs library, specifically in the openfs.c file. This allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image. **Recommendations** For versions prior to 1.42.12, update to version 1.42.12 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.10.2 **Description** The issue is related to a heap-based buffer overflow in SceneKit, which can be triggered by a crafted accessor element in a Collada file. This can allow remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash. **Recommendations** For Apple OS X versions prior to 10.10.2, update to version 10.10.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** JasPer versions 1.900.1 and earlier **Description** The issue is related to a double free vulnerability in the `jas iccattrval destroy` function. This vulnerability allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file. **Recommendations** For JasPer versions 1.900.1 and earlier, as a temporary workaround, consider disabling the use of ICC color profiles in JPEG 2000 image files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JasPer versions 1.900.1 and earlier **Description** The issue is related to a heap-based buffer overflow in the `jp2 decode` function, which can be triggered by a crafted JPEG 2000 file. This can cause a denial of service (crash) or possibly allow remote attackers to execute arbitrary code. **Recommendations** For JasPer versions 1.900.1 and earlier, consider updating to a newer version that addresses this issue. As a temporary workaround, restrict the handling of JPEG 2000 files to minimize the risk of exploitation. Avoid using the `jp2 decode` function until a patch is available.