Firefoxxpyang

**Name of the Vulnerable Software and Affected Versions** miniupnp ngiflib version 0.4 **Description** An issue was discovered in the GetByte function, allowing local attackers to cause a denial of service (DoS) via a crafted .gif file, which can lead to an infinite loop. **Recommendations** For miniupnp ngiflib version 0.4, consider disabling the GetByte function as a temporary workaround until a patch is available. Restrict the processing of .gif files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** rockcarry ffjpeg versions 1.0.0 and earlier **Description** The issue is related to a Buffer Overflow vulnerability in the `jfif decode()` function, which allows local attackers to execute arbitrary code due to an issue with `ALIGN`. This vulnerability can be exploited by local attackers. **Recommendations** For rockcarry ffjpeg versions 1.0.0 and earlier, as a temporary workaround, consider disabling the `jfif decode()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.