Grandnew

**Name of the Vulnerable Software and Affected Versions** msoulier tftpy (affected versions not specified) **Description** A Buffer Overflow issue allows a remote attacker to cause a denial of service via the `parse` function in the `TftpPacketFactory` class. This issue can be exploited by a remote attacker, potentially leading to a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PyPXE version 1.8.4 **Description** The issue allows a remote attacker to cause a denial of service via the `handle` function in the `tftp` module. **Recommendations** For PyPXE version 1.8.4, consider disabling the `handle` function in the `tftp` module as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LuPng through 2017-03-10 **Description** A heap-based buffer over-read issue has been discovered in the internalPrintf function within miniz/lupng.c. **Recommendations** For versions through 2017-03-10, at the moment, there is no information about a newer version that contains a fix for this issue.