Insu Yun

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor and Modem Exynos 2400 Samsung Mobile Processor and Modem Modem 5400 Description: An issue was discovered in L2, where the lack of a length check leads to a Denial of Service via a malformed PDCP packet. Recommendations: For Samsung Mobile Processor and Modem Exynos 2400, apply a patch to add a length check for PDCP packets. For Samsung Mobile Processor and Modem Modem 5400, apply a patch to add a length check for PDCP packets.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.3 iPadOS versions prior to 13.3 watchOS versions prior to 6.1.1 macOS Catalina versions prior to 10.15.2 macOS Mojave versions prior to Security Update 2019-002 macOS High Sierra versions prior to Security Update 2019-007 tvOS versions prior to 13.3 **Description** A memory corruption issue was addressed with improved memory handling. An application may be able to execute arbitrary code with system privileges. **Recommendations** Update to iOS 13.3 or later. Update to iPadOS 13.3 or later. Update to watchOS 6.1.1 or later. Update to macOS Catalina 10.15.2 or later. Apply Security Update 2019-002 or later for macOS Mojave. Apply Security Update 2019-007 or later for macOS High Sierra. Update to tvOS 13.3 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.4 macOS Mojave versions prior to 10.14.6 tvOS versions prior to 12.4 watchOS versions prior to 5.3 Safari versions prior to 12.1.2 iTunes for Windows versions prior to 12.9.6 iCloud for Windows versions prior to 7.13 and 10.6 **Description** The issue is related to memory corruption in the WebKit display module, allowing a remote attacker to execute arbitrary code using a specially crafted web page. Processing maliciously crafted web content may lead to arbitrary code execution. **Recommendations** For iOS versions prior to 12.4, update to iOS 12.4 or later. For macOS Mojave versions prior to 10.14.6, update to macOS Mojave 10.14.6 or later. For tvOS versions prior to 12.4, update to tvOS 12.4 or later. For watchOS versions prior to 5.3, update to watchOS 5.3 or later. For Safari versions prior to 12.1.2, update to Safari 12.1.2 or later. For iTunes for Windows versions prior to 12.9.6, update to iTunes for Windows 12.9.6 or later. For iCloud for Windows versions prior to 7.13 and 10.6, update to iCloud for Windows 7.13 or 10.6 or later.

**Name of the Vulnerable Software and Affected Versions** FFmpeg versions 2.3 through 3.4 **Description** The issue is related to the `gmc mmx` function in `libavcodec/x86/mpegvideodsp.c`, which does not properly validate widths and heights. This allows remote attackers to cause a denial of service via a crafted MPEG file, resulting in an integer signedness error and out-of-array read. **Recommendations** For FFmpeg versions 2.3 through 3.4, consider updating to a version where this issue is fixed, as the current version does not properly handle the validation of widths and heights in the `gmc mmx` function.

Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.29.1 Description: The issue is related to the `elf.c` component in the Binary File Descriptor (BFD) library, which does not validate sizes of core notes. This allows remote attackers to cause a denial of service via a crafted object file, resulting in a heap-based buffer over-read and application crash. The vulnerability is related to functions such as `elfcore grok netbsd procinfo`, `elfcore grok openbsd procinfo`, and `elfcore grok nto status`. It is also described as a buffer data reading vulnerability beyond permissible boundaries. Recommendations: For GNU Binutils version 2.29.1, consider updating to a newer version that addresses this issue, as the current version allows for a denial of service attack through a crafted object file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.