Jungnickel

**Name of the Vulnerable Software and Affected Versions** Open5GS versions prior to 2.7.7 **Description** A remote denial of service issue exists in the AMF component within the `src/amf/gmm-handler.c` file. The flaw is triggered by the manipulation of the `reg type` argument. **Recommendations** Upgrade to version 2.7.7.

**Name of the Vulnerable Software and Affected Versions** Open5GS versions through 2.7.6 **Description** A security flaw exists in Open5GS. The issue involves a stack-based buffer overflow in the `hss ogs diam cx mar cb` function within the `src/hss/hss-cx-path.c` file, part of the VoLTE Cx-Test component. The `OGS KEY LEN` argument can be manipulated, leading to the overflow. This issue can be exploited remotely. **Recommendations** Apply patch 54dda041211098730221d0ae20a2f9f9173e7a21 to remediate the issue.