Jeffbencteux

**Name of the Vulnerable Software and Affected Versions** Pure Data versions 0.54-0 **Description** An issue in Pure Data allows a local attacker to escalate privileges via the `set*id()` function. This is a local privilege escalation issue that can be exploited by a local attacker to gain higher privileges. **Recommendations** For Pure Data version 0.54-0, update to version 0.54-1 to resolve the issue. As a temporary workaround, consider restricting the use of the `set*id()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** NTFS-3G versions before 75dcdc2 **Description** The issue is related to a use-after-free error in the `ntfs uppercase mbs` function in `libntfs-3g/unistr.c`. This could potentially allow an attacker to cause a crash. However, discussions suggest that exploiting this issue would be challenging. **Recommendations** For NTFS-3G versions before 75dcdc2, update to a version after 75dcdc2 to resolve the issue. As a temporary workaround, consider restricting access to the `ntfs uppercase mbs` function until a patch is available.