Aladdin Mubaied

**Name of the Vulnerable Software and Affected Versions** libjpeg (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, or potentially execute arbitrary code. This is achieved through a crafted file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LibTIFF version 4.0.6 **Description** The issue is related to a buffer overflow in the `readextension` function in `gif2tiff.c`, which can be triggered by a crafted GIF file, allowing remote attackers to cause a denial of service, resulting in an application crash. **Recommendations** For LibTIFF version 4.0.6, consider updating to a newer version that addresses this issue, as the current version is affected by the buffer overflow in the `readextension` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.