Aisle In

**Name of the Vulnerable Software and Affected Versions** Poppler (affected versions not specified) **Description** A flaw in the Splash backend allows a remote attacker to trigger an integer overflow in the `tilingPatternFill()` function by using a specially crafted PDF file. This overflow causes an undersized heap memory allocation, which enables an out-of-bounds write. This can lead to arbitrary code execution, information disclosure, or denial of service within the application processing the PDF. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libsolv (affected versions not specified) **Description** A heap buffer overflow occurs when processing a specially crafted `.solv` file containing negative size values in the `repo add solv()` function. This results in an undersized memory allocation and a subsequent out-of-bounds write, which an attacker could exploit to cause a denial of service (DoS). **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.