Gmg137

**Name of the Vulnerable Software and Affected Versions** snap7-rs versions prior to 153d3e8c16decd7271e2a5b2e3da4d6f68589424 **Description** A flaw exists in snap7-rs that could lead to a heap-based buffer overflow. The issue is located in the `snap7 rs::client::S7Client::download` function within the `client.rs` file. This manipulation can be triggered remotely. The exploit is publicly available. **Recommendations** Update snap7-rs to a version prior to 153d3e8c16decd7271e2a5b2e3da4d6f68589424. As a temporary workaround, consider restricting the use of the `snap7 rs::client::S7Client::download` function until a patch is available.

Name of the Vulnerable Software and Affected Versions: snap7-rs versions up to 1.142.1 Description: A critical issue exists in snap7-rs related to memory corruption. The `pthread cond destroy` function within the Public API component is affected. The exploit for this issue has been publicly disclosed. Recommendations: Versions prior to 1.142.1 should be updated. As a temporary workaround, consider disabling the `pthread cond destroy` function until a patch is available.