Cheng Wen

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.14rc16 **Description** A buffer over-read issue exists in the crc64ib function in crc64.c in nasmlib. This can be triggered by a crafted asm input, potentially causing segmentation faults and leading to denial-of-service. **Recommendations** For Netwide Assembler (NASM) version 2.14rc16, consider avoiding the use of crafted asm inputs that may trigger the buffer over-read in the crc64ib function until a fix is available. As a temporary workaround, restrict the use of the crc64ib function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) versions prior to 2.14.03 **Description** An infinite recursion issue was found in the functions `expr`, `rexp`, `bexpr`, and `cexpr` in certain scenarios involving lots of '{' characters, resulting in a stack exhaustion problem. This could be leveraged by remote attackers to cause a denial-of-service via a crafted asm file. **Recommendations** For versions prior to 2.14.03, update to version 2.14.03 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `expr`, `rexp`, `bexpr`, and `cexpr` functions in scenarios involving lots of '{' characters to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) versions prior to 2.14.03 **Description** A stack exhaustion problem exists due to the `expr6` function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. This could allow remote attackers to cause a denial-of-service via a crafted asm file. **Recommendations** For versions prior to 2.14.03, update to version 2.14.03 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `expr6` function in eval.c to minimize the risk of exploitation. Avoid using crafted asm files that could trigger the recursive calls until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** An issue in cp-demangle.c in GNU libiberty, distributed in GNU Binutils, causes stack exhaustion due to recursive stack frames in the C++ demangling functions. This is related to uncontrolled recursion, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** For GNU Binutils version 2.31, consider disabling the cplus demangle type, d bare function type, and d function type functions as a temporary workaround until a patch is available. Restrict access to the demangling functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: LibTIFF versions 4.0.9 and earlier Description: The issue is related to a heap-based buffer overflow in the `t2p write pdf` function, located in `tiff2pdf.c`, which can be triggered by a crafted TIFF file. This can cause a denial of service, leading to an application crash, and potentially have other unspecified impacts. Recommendations: For LibTIFF versions 4.0.9 and earlier, consider disabling the `t2p write pdf` function until a patch is available to prevent potential exploitation via crafted TIFF files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** The issue is related to a NULL pointer dereference error in the `work stuff copy to from` function when called from `iterate demangle function` in the `cplus-dem.c` component of GNU Binutils. This can be exploited by a remote attacker to cause a denial of service. **Recommendations** For GNU Binutils version 2.31, consider disabling the `cplus-dem.c` component or restricting its use until a patch is available. As a temporary workaround, avoid using the `iterate demangle function` and `work stuff copy to from` functions in the `cplus-dem.c` component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** The issue is related to a stack consumption problem in the cp-demangle.c component of GNU libiberty, distributed in GNU Binutils. This problem is caused by the `cplus demangle type` function making recursive calls to itself in certain scenarios involving many 'P' characters. The vulnerability allows a remote attacker to cause a denial of service due to uncontrolled resource consumption. **Recommendations** For GNU Binutils version 2.31, consider applying a patch or fix that addresses the recursive call issue in the `cplus demangle type` function to prevent stack consumption problems. As a temporary workaround, restrict the input to prevent scenarios involving many 'P' characters that could trigger the recursive calls.