Ganshuitao

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.14rc16 **Description** The issue is related to a use-after-free error in the `pp getline` function at `asm/preproc.c`. This error can cause a denial of service when attempting to increment the line number. **Recommendations** For Netwide Assembler (NASM) version 2.14rc16, consider avoiding the use of the `pp getline` function until a patch is available. As a temporary workaround, restrict access to the `asm/preproc.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.14rc16 **Description** The issue is related to a use-after-free error in the `pp getline` function located at `asm/preproc.c`. This error can cause a denial of service during certain finishes tests. **Recommendations** For Netwide Assembler (NASM) version 2.14rc16, consider avoiding the use of the `pp getline` function until a patch is available. As a temporary workaround, restrict access to the `asm/preproc.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.0.9 Description: The issue is related to a NULL pointer dereference in the `TIFFWriteDirectorySec` function, which can lead to a denial of service attack. This can be exploited by a remote attacker to cause a service disruption. Recommendations: For LibTIFF version 4.0.9, consider applying a patch or update that fixes the NULL pointer dereference issue in the `TIFFWriteDirectorySec` function. As a temporary workaround, restrict the use of the `TIFFWriteDirectorySec` function until a patch is available.