Fabianfett

**Name of the Vulnerable Software and Affected Versions** PostgresNIO versions prior to 1.14.2 **Description** The issue affects users of PostgresNIO who connect to servers with TLS enabled, allowing a man-in-the-middle attacker to inject false responses to the client's first few queries despite the use of TLS certificate verification and encryption. **Recommendations** For PostgresNIO versions prior to 1.14.2, update to version 1.14.2 or later to resolve the issue. As a temporary workaround, consider disabling TLS connections until a patch is available. Restrict access to sensitive data to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Swift for Linux (affected versions not specified) **Description** A stack overflow issue existed due to deeply nested malicious JSON input. The issue was addressed with improved input validation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.