Mariusz Ziulek

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.12.0 Description: A heap-based buffer overflow issue exists in the ensure solid xref function, located in pdf/pdf-xref.c, which can be exploited by a remote attacker using a crafted PDF file. This is due to the lack of restrictions on xref subsection object numbers, potentially allowing the execution of arbitrary code. Recommendations: For Artifex MuPDF version 1.12.0, consider updating to a newer version that addresses this issue, as using a crafted PDF file could lead to arbitrary code execution. As a temporary workaround, consider restricting the use of crafted PDF files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libssh versions prior to 0.6.5 **Description** The issue is related to the improper validation of state in the SSH MSG NEWKEYS and SSH MSG KEXDH REPLY packet handlers. This allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and crash, via a crafted SSH packet. **Recommendations** For versions prior to 0.6.5, update to version 0.6.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the SSH service to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libssh2 versions prior to 1.5.0 **Description** The issue allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH MSG KEXINIT packet. This is related to the kex agree methods function in libssh2. **Recommendations** For versions prior to 1.5.0, update to version 1.5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to SSH services to minimize the risk of exploitation.