Fabio Olive Leite

**Name of the Vulnerable Software and Affected Versions** foomatic-filters versions prior to 4.0.6 **Description** The issue is related to a heap-based buffer overflow in the unhtmlify function in foomatic-rip. This can be exploited by remote attackers to cause a denial of service, resulting in memory corruption and a crash, or potentially execute arbitrary code. The attack vector involves a long job title. **Recommendations** For versions prior to 4.0.6, update to version 4.0.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.0.2 **Description** The issue allows local users to cause a denial of service, resulting in an infinite loop, via a deep 64-bit userspace backtrace. This is due to a problem in the perf callchain user 64 function in arch/powerpc/perf/callchain.c on ppc64 platforms. **Recommendations** For versions prior to 4.0.2, update to version 4.0.2 or later to resolve the issue.