Bfabiszewski

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is a NULL Pointer Dereference in the GitHub repository bfabiszewski/libmobi. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is a Buffer Over-read in the GitHub repository bfabiszewski/libmobi. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.10 **Description** The issue allows attackers to cause a Denial of Service (DoS) via a crafted mobi file, due to a NULL pointer dereference in the `mobi buffer getpointer` component. **Recommendations** For versions prior to 0.10, update to version 0.10 or later to resolve the issue. As a temporary workaround, consider restricting the use of crafted mobi files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is a Buffer Over-read in the GitHub repository bfabiszewski/libmobi. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is a Buffer Over-read in the GitHub repository bfabiszewski/libmobi. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is a buffer over-read that occurs at parse rawml.c:1416 in the GitHub repository bfabiszewski/libmobi. This bug causes the program to read data past the end of the intended buffer, which can allow attackers to read sensitive information from other memory locations or cause a crash. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information until the update is applied.

**Name of the Vulnerable Software and Affected Versions** libmobi versions prior to 0.11 **Description** The issue is related to a buffer over-read in the libmobi GitHub repository. This problem can lead to arbitrary code execution. **Recommendations** For versions prior to 0.11, update to version 0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libmobi (affected versions not specified) **Description** The issue is related to the use of out-of-range pointer offset. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libmobi (affected versions not specified) **Description** The issue is related to the use of out-of-range pointer offset. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libmobi (affected versions not specified) **Description** The issue is related to an out-of-bounds read. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libmobi (affected versions not specified) **Description** The issue is related to an Out-of-bounds Write. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.