Rookie

**Name of the Vulnerable Software and Affected Versions** libarchive versions up to 3.7.7 **Description** A problematic issue was found in libarchive, affecting the `list` function of the file bsdunzip.c. This issue leads to a null pointer dereference. The attack can be launched on the local host. **Recommendations** For versions up to 3.7.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Nome do Software Vulnerável e Versões Afetadas: GNU elfutils versão 0.192 Descrição: Uma vulnerabilidade foi encontrada no GNU elfutils, afetando a função `handle dynamic symtab` do arquivo `readelf.c` no componente `eu-read`. A manipulação leva à desreferência de ponteiro nulo. É necessário realizar o ataque localmente. O exploit foi divulgado publicamente e pode ser utilizado. Recomendações: Para o GNU elfutils versão 0.192, recomenda-se aplicar um patch para corrigir este problema. O patch é identificado como b38e562a4c907e08171c76b8b2def8464d5a104a. Como solução paliativa temporária, considere desabilitar a função `handle dynamic symtab` até que um patch esteja disponível.

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192 Description: A critical vulnerability was found in GNU elfutils. The issue affects the function `dump data section/print string section` of the file readelf.c in the eu-readelf component. The manipulation of the argument `z/x` leads to a buffer overflow. An attack must be approached locally. The exploit has been disclosed to the public and may be used. Recommendations: To fix this issue, it is recommended to apply a patch. The identifier of the patch is 73db9d2021cab9e23fd734b0a76a612d52a6f1db. As a temporary workaround, consider disabling the `dump data section/print string section` function until a patch is available. Restrict access to the vulnerable component eu-readelf to minimize the risk of exploitation. Avoid using the argument `z/x` in the affected function until the issue is resolved.

Nome do Software Vulnerável e Versões Afetadas: GNU elfutils versão 0.192 Descrição: Um problema crítico foi encontrado no GNU elfutils, afetando a função ` libdw thread tail` na biblioteca `libdw alloc.c` do componente `eu-readelf`. A manipulação do argumento `w` leva à corrupção de memória. O ataque pode ser iniciado remotamente, com uma complexidade bastante alta, e a exploração parece ser difícil. O exploit foi divulgado ao público e pode ser utilizado. Recomendações: Para corrigir este problema, recomenda-se aplicar um patch, especificamente aquele com o nome `2636426a091bd6c6f7f02e49ab20d4cdc6bfc753`. Como solução temporária, considere desativar a função ` libdw thread tail` até que um patch esteja disponível. Restrinja o acesso à biblioteca `libdw alloc.c` para minimizar o risco de exploração. Evite usar o argumento `w` na função afetada até que o problema seja resolvido.

Nome do Software Vulnerável e Versões Afetadas: GNU elfutils versão 0.192 Descrição: Um problema crítico foi encontrado no GNU elfutils. Isso afeta a função `process symtab` do arquivo `readelf.c` no componente `eu-readelf`. A manipulação do argumento `D/a` leva a um estouro de buffer. É necessário acesso local para realizar este ataque. O exploit foi divulgado publicamente e pode ser utilizado. Recomendações: Para corrigir este problema, aplique um patch ao GNU elfutils versão 0.192. Como solução temporária, considere restringir o acesso ao componente `eu-readelf` até que um patch esteja disponível. Evite usar o argumento `D/a` no arquivo `readelf.c` afetado até que o problema seja resolvido.

**Name of the Vulnerable Software and Affected Versions** nasm version 2.14.02 **Description** A Use After Free issue in the `new Token` function in `asm/preproc.c` allows attackers to cause a denial of service via a crafted nasm command. **Recommendations** For nasm version 2.14.02, consider disabling the `new Token` function in `asm/preproc.c` as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libtiff version 4.0.10 **Description** The issue is related to a heap buffer overflow in the ` TIFFmemcpy` function in `tif unix.c` of the libtiff library. This allows an attacker to cause a denial-of-service through a crafted tiff file. The vulnerability is associated with writing beyond the buffer boundaries in memory, which can be exploited to disrupt service. **Recommendations** For libtiff version 4.0.10, consider disabling the ` TIFFmemcpy` function as a temporary workaround until a patch is available. Restrict access to crafted tiff files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** An issue in the Binary File Descriptor (BFD) library allows an attacker to cause a denial of service through a crafted PE file. This can be triggered by the executable objdump. The vulnerability is related to a heap-based buffer over-read in the `bfd getl32` function in `libbfd.c`. It enables a remote attacker to disrupt service using a specially crafted file. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk, as the current version contains a heap-based buffer over-read vulnerability in the `bfd getl32` function. As a temporary workaround, consider restricting the use of the `objdump` executable until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** The issue is related to an invalid memory access in the ` bfd stab section find nearest line` function of the `syms.c` component in the GNU Binutils. This can be exploited by an attacker to cause a denial of service, resulting in an application crash, by using a specially crafted ELF file. The vulnerability is associated with a buffer overflow in memory. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, restrict the use of specially crafted ELF files to minimize the risk of causing a denial of service.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** An issue exists in the Binary File Descriptor (BFD) library, specifically in the `bfd zalloc` function within the `opncls.c` component. This issue is related to an invalid memory access, which can be exploited by attackers to cause a denial of service (application crash) via a crafted ELF file. The vulnerability allows a remote attacker to disrupt service using a specially crafted ELF file. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk, as the current version contains an invalid memory access issue in the `bfd zalloc` function. As a temporary workaround, consider restricting the use of crafted ELF files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.14rc15 **Description** The issue is related to an invalid memory write in the `expand smacro` function in `preproc.c`, which can cause a denial of service. This is due to errors in memory deallocation. Attackers can exploit this by providing a crafted input file, leading to a segmentation fault. The estimated number of potentially affected devices is not specified. **Recommendations** For Netwide Assembler (NASM) version 2.14rc15, consider avoiding the use of the `expand smacro` function in `preproc.c` until a patch is available. As a temporary workaround, restrict the input files to prevent crafted files from being processed. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LibTIFF version 4.0.9 **Description** The issue is related to a NULL pointer dereference in the ` TIFFmemcmp` function, which can be triggered by a crafted tiff file, allowing an attacker to cause a denial-of-service. This can be exploited through the `tiffcp` executable. The vulnerability is also described as a buffer overflow in memory, which can lead to a denial-of-service when a specially crafted tiff file is used. **Recommendations** For LibTIFF version 4.0.9, consider avoiding the use of the `tiffcp` executable with untrusted tiff files until a patch is available. As a temporary workaround, restrict the handling of tiff files to trusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to the bfd elf parse attributes function in the elf-attrs.c component of GNU Binutils, which is associated with unlimited memory allocation. This can be exploited by a remote attacker using a specially crafted ELF file, leading to a denial of service (excessive memory allocation and application crash). The vulnerability can be triggered during the execution of nm, for example, via the bfd elf parse attributes function in elf-attrs.c and the bfd malloc function in libbfd.c. **Recommendations** For GNU Binutils version 2.30, consider disabling the bfd elf parse attributes function as a temporary workaround until a patch is available. Restrict access to the elf-attrs.c component to minimize the risk of exploitation. Avoid using specially crafted ELF files that could trigger the excessive memory allocation issue.

**Name of the Vulnerable Software and Affected Versions** PoDoFo version 0.9.6-rc1 **Description** The issue is related to an invalid memory read in the `PoDoFo::PdfVariant::DelayedLoad()` function, located in `PdfVariant.h`. This can be exploited by remote attackers using a crafted file, leading to a denial-of-service impact. **Recommendations** For PoDoFo version 0.9.6-rc1, consider avoiding the use of the `DelayedLoad()` function until a patch is available. As a temporary workaround, restrict the processing of crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: LibTIFF versions 3.9.3 through 4.0.9 Description: The issue is related to a heap-based buffer overflow in the `cpSeparateBufToContigBuf` function, which can be exploited by remote attackers using a crafted TIFF file. This can lead to a denial of service (crash) or potentially have other unspecified impacts. The vulnerability is also associated with a buffer overflow operation that allows a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. Recommendations: For LibTIFF versions 3.9.3 through 4.0.9, consider disabling the `cpSeparateBufToContigBuf` function until a patch is available to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.