Cedric Halbronn

**Name of the Vulnerable Software and Affected Versions** Netatalk (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this issue. The specific flaw exists within the `parse entries` function. The issue results from the lack of proper error handling when parsing AppleDouble entries. An attacker can leverage this issue to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Lexmark devices (affected versions not specified) **Description** The issue concerns a PJL directory traversal vulnerability that can be leveraged to overwrite internal configuration files. This vulnerability affects Lexmark devices and can potentially be used for remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 Windows 10 **Description** A security feature bypass issue exists due to the Windows kernel's failure to properly initialize a memory address. This allows an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploits this issue could retrieve the base address of the kernel driver from a compromised process. To exploit this issue, an attacker would have to log on to an affected system and run a specially crafted application. **Recommendations** For Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Adobe Type Manager Library versions prior to the fixed version **Description** The issue is caused by a buffer underflow in the atmfd.dll library, allowing remote attackers to execute arbitrary code via a crafted OpenType font. This could enable an attacker to take complete control of the affected system, install programs, view, change, or delete data, or create new accounts with full user rights. **Recommendations** For Microsoft Windows Adobe Type Manager Library, update to a version that fixes the buffer underflow issue in atmfd.dll to prevent remote code execution. As a temporary workaround, consider restricting the use of specially crafted OpenType fonts until a patch is available. Avoid using the Windows Adobe Type Manager Library with untrusted font sources until the issue is resolved.