Guangbuming

**Name of the Vulnerable Software and Affected Versions** pdf2json version 0.70 **Description** A buffer overflow issue allows a local attacker to execute arbitrary code via the GString::copy() and ImgOutputDev::ImgOutputDev function. **Recommendations** For pdf2json version 0.70, consider disabling the GString::copy() and ImgOutputDev::ImgOutputDev functions as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to a segmentation violation in the function `free lines` at `swftools/lib/modules/swfshape.c`. This indicates a potential memory access error that could lead to unexpected program behavior or crashes. **Recommendations** For swftools version 0.9.2, as a temporary workaround, consider disabling the `free lines` function until a patch is available. However, since this is a core functionality issue, the best course of action would be to wait for an official update or patch from the developers that addresses the segmentation violation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to a segmentation violation in the `compileSWFActionCode` function located at `swftools/lib/action/actioncompiler.c`. This function is part of the swftools library, which is used for compiling SWF action code. **Recommendations** For swftools version 0.9.2, consider disabling the `compileSWFActionCode` function as a temporary workaround until a patch is available. Restrict access to the `actioncompiler.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to a segmentation violation in the `state free` function located at swftools/src/swfc-history.c. **Recommendations** For swftools version 0.9.2, consider disabling the `state free` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to a segmentation violation in the `s font` function located at `swftools/src/swfc.c`. This violation can occur in swftools version 0.9.2. **Recommendations** For swftools version 0.9.2, as a temporary workaround, consider disabling the `s font` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to a strcpy parameter overlap in swftools. The overlap occurs via the /home/swftools/src/swfc+0x48318a endpoint. **Recommendations** For swftools version 0.9.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.