Arthurx

**Name of the Vulnerable Software and Affected Versions** LibTIFF versions through 4.7.0 **Description** A vulnerability exists in LibTIFF due to a null pointer dereference in the `t2p read tiff init` function within the `tools/tiff2pdf.c` file of the fax2ps component. Exploitation requires local access and is considered difficult. **Recommendations** Apply the patch 2ebfffb0e8836bfb1cd7d85c059cd285c59761a4 to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.45 **Description** A problematic issue has been identified in GNU Binutils 2.45. This issue affects the `bfd elf set group contents` function within the `bfd/elf.c` file, leading to an out-of-bounds write condition. The attack can be launched on the local host. The exploit for this issue has been publicly disclosed. **Recommendations** Apply the patch 41461010eb7c79fee7a9d5f6209accdaac66cc6b to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.45 **Description** A problematic vulnerability exists in the `copy section` function within the `binutils/objcopy.c` file. This manipulation leads to a heap-based buffer overflow, requiring local access for exploitation. The exploit has been publicly disclosed and may be utilized. **Recommendations** Apply the patch 08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944 to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.44 **Description** A problematic issue exists in the BFD Library component of GNU Binutils. The `bfd elf get str section` function within the `bfd/elf.c` file is susceptible to a null pointer dereference. Local access is required for exploitation. The issue has been publicly disclosed. **Recommendations** Apply the patch db856d41004301b3a56438efd957ef5cabb91530 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.44 **Description** A memory leak issue exists in the DWARF Section Handler component, specifically within the `process debug info` function of the `binutils/dwarf.c` file. Local access is required for exploitation. **Recommendations** Apply the patch with identifier e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: LibTIFF versions prior to 4.5.1 Description: A stack-based buffer overflow issue exists in the `tiffcrop` component of LibTIFF, specifically within the `readSeparateStripsetoBuffer` function located in the `tools/tiffcrop.c` file. Local access is required for exploitation. Recommendations: Apply the patch identified as 8a7a48d7a645992ca83062b3a1873c951661e2b3.

**Name of the Vulnerable Software and Affected Versions** LibTIFF versions up to 4.7.0 **Description** A critical issue exists in LibTIFF, specifically within the `get histogram` function located in the `tools/tiffmedian.c` file. This issue leads to a use-after-free condition, potentially allowing for local attacks. The exploit for this issue has been publicly disclosed. **Recommendations** Apply the patch identified as fe10872e53efba9cc36c66ac4ab3b41a839d5172 to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** LibTIFF versions up to 4.7.0 **Description** A critical issue was identified in LibTIFF, specifically within the `setrow` function of the `tools/thumbnail.c` file. This manipulation results in a buffer overflow, potentially allowing for local exploitation. The vulnerability affects products that are no longer supported by the maintainer. **Recommendations** Apply the patch e8c9d6c616b19438695fd829e58ae4fde5bfbc22 to resolve the issue in LibTIFF versions up to 4.7.0.