Matias Eissler

**Name of the Vulnerable Software and Affected Versions** Broadcom BCM4325 and BCM4329 Wi-Fi chips (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in an out-of-bounds read and Wi-Fi outage, via an RSN 802.11i information element. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X version 10.5.8 **Description** The issue is related to an integer signedness error in Apple Type Services (ATS), which can be exploited by remote attackers to execute arbitrary code. This can be achieved by using a crafted embedded Compact Font Format (CFF) font in a document. **Recommendations** For Apple Mac OS X version 10.5.8, consider avoiding the use of embedded CFF fonts in documents until a fix is available. As a temporary workaround, restrict the opening of documents from untrusted sources to minimize the risk of exploitation.