Frostb1Ten

Name of the Vulnerable Software and Affected Versions Electron versions prior to 39.8.5, prior to 40.8.5, prior to 41.1.0, and prior to 42.0.0-alpha.5 Description Applications utilizing the `clipboard.readImage()` function may experience a denial of service. If the system clipboard contains image data that cannot be decoded, the resulting null bitmap can cause a process crash. Only applications that call `clipboard.readImage()` are affected. This issue does not allow memory corruption or code execution. A workaround is to validate the clipboard contains image data via `clipboard.availableFormats()` before calling `clipboard.readImage()`. Recommendations Update to Electron version 39.8.5 or later. Update to Electron version 40.8.5 or later. Update to Electron version 41.1.0 or later. Update to Electron version 42.0.0-alpha.5 or later.

Name of the Vulnerable Software and Affected Versions: PHP versions 8.1.* before 8.1.31 PHP versions 8.2.* before 8.2.26 PHP versions 8.3.* before 8.3.14 Description: The issue is related to an error in the `convert.quoted-printable-decode` filter, which can lead to a buffer overread by one byte. This can cause crashes or disclose the content of other memory areas in certain circumstances. The vulnerability can be exploited by a remote attacker to cause a denial of service. Recommendations: For PHP versions 8.1.* before 8.1.31, update to version 8.1.31 or later. For PHP versions 8.2.* before 8.2.26, update to version 8.2.26 or later. For PHP versions 8.3.* before 8.3.14, update to version 8.3.14 or later.