Andersk

**Name of the Vulnerable Software and Affected Versions** Zulip Server versions prior to 5.6 **Description** The issue arises when displaying messages with embedded remote images. Normally, Zulip loads the image preview via a go-camo proxy server. However, an attacker who can send messages could include a crafted URL that tricks the server into embedding a remote image reference directly. This could allow the attacker to infer the viewer’s IP address and browser fingerprinting information. **Recommendations** For versions prior to 5.6, update to Zulip Server 5.6 to resolve the issue. As a temporary workaround, consider disabling image and link previews to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Zulip Server versions 5.4 and earlier **Description** The issue arises from an incorrect authorization check in Zulip Server, allowing a member of an organization to craft an API call that grants organization administrator privileges to one of their bots. Members who don’t own any bots and lack permission to create them can’t exploit this issue. **Recommendations** For Zulip Server versions 5.4 and earlier, update to Zulip Server 5.5 to fix the issue. As a temporary workaround, an organization administrator can restrict the `Who can create bots` permission to administrators only, and change the ownership of existing bots.

**Name of the Vulnerable Software and Affected Versions** Zulip Server versions from June 2021 through main branch before 2022-03-01 **Description** The issue affects the recent topics page of Zulip Server, where an attacker could exploit a cross-site scripting vulnerability by crafting a malicious full name for their account and sending messages to a topic with multiple participants. If a victim opens an overflow tooltip including this full name, it could trigger the execution of JavaScript code controlled by the attacker. **Recommendations** For Zulip Server versions from June 2021 through main branch before 2022-03-01, upgrade from main to a version 2022-03-01 or later to deploy the fix. As a temporary workaround, consider restricting access to the recent topics page or disabling the overflow tooltip feature until the upgrade is applied.

**Name of the Vulnerable Software and Affected Versions** BarnOwl versions prior to 1.0.5 owl version 2.1.11 **Description** The issue involves multiple buffer overflows that allow remote attackers to execute arbitrary code. This can be achieved through various vectors, including a crafted zcrypt message related to zcrypt.c, and a reply command on a message with a Zephyr Cc: list, related to zwrite.c. **Recommendations** For BarnOwl versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue. For owl version 2.1.11, update to a version later than 2.1.11 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ndiswrapper versions prior to 1.53-r1 **Description** The issue affects the ndiswrapper package in Gentoo Linux and the Linux kernel 2.6, allowing remote attackers to execute arbitrary code by sending packets over a local wireless network with long ESSIDs, potentially compromising confidentiality, integrity, and availability of protected information. **Recommendations** For ndiswrapper versions prior to 1.53-r1, update to version 1.53-r1 or later to resolve the issue. As a temporary workaround, consider restricting access to wireless networks to minimize the risk of exploitation.