Mirusu400

**Name of the Vulnerable Software and Affected Versions** FastDDS versions prior to 2.14.1 FastDDS versions prior to 2.13.5 FastDDS versions prior to 2.10.4 FastDDS versions prior to 2.6.8 **Description** FastDDS is a C++ implementation of the DDS standard of the OMG. When a publisher serves a malformed `RTPS` packet, a heap buffer overflow occurs on the subscriber, potentially leading to a DOS attack. This issue can remotely crash any Fast-DDS process. **Recommendations** For versions prior to 2.14.1, update to version 2.14.1 or later. For versions prior to 2.13.5, update to version 2.13.5 or later. For versions prior to 2.10.4, update to version 2.10.4 or later. For versions prior to 2.6.8, update to version 2.6.8 or later.

**Name of the Vulnerable Software and Affected Versions** FastDDS versions prior to 2.14.1 FastDDS versions prior to 2.13.5 FastDDS versions prior to 2.10.4 FastDDS versions prior to 2.6.8 **Description** FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). When a publisher serves a malformed `RTPS` packet, the subscriber crashes when creating `pthread`. This can remotely crash any Fast-DDS process, potentially leading to a DOS attack. **Recommendations** For versions prior to 2.14.1, update to version 2.14.1 or later. For versions prior to 2.13.5, update to version 2.13.5 or later. For versions prior to 2.10.4, update to version 2.10.4 or later. For versions prior to 2.6.8, update to version 2.6.8 or later. As a temporary workaround, consider restricting access to the `RTPS` packet handler to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Gnuboard g6 versions prior to the version including commit c2cc1f5069e00491ea48618d957332d90f6d40e4 **Description** The issue concerns a Cross Site Scripting (XSS) problem. It is related to the `board.py` file. **Recommendations** For Gnuboard g6 versions prior to the version including commit c2cc1f5069e00491ea48618d957332d90f6d40e4, update to a version that includes the fix for this issue.

**Name of the Vulnerable Software and Affected Versions** eProsima FastDDS versions 2.14.0 and earlier **Description** An issue allows a local attacker to cause a denial of service (DoS) and obtain sensitive information via a crafted `history depth` parameter in the DurabilityService QoS component. **Recommendations** For versions 2.14.0 and earlier, as a temporary workaround, consider restricting the use of the `history depth` parameter in the DurabilityService QoS component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OpenDDS (affected versions not specified) **Description** An issue in OpenDDS allows a local attacker to cause a denial of service and obtain sensitive information via the `max samples` parameter within the DataReaderQoS component. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** eProsima FastDDS versions 2.14.0 and earlier **Description** An issue allows a local attacker to cause a denial of service (DoS) and obtain sensitive information via a crafted `max samples` parameter in the DurabilityService QoS component. **Recommendations** For versions 2.14.0 and earlier, consider restricting access to the DurabilityService QoS component to minimize the risk of exploitation. As a temporary workaround, avoid using the `max samples` parameter in the affected component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FastDDS versions 2.6.x through 2.12.x **Description** An issue in the HistoryQosPolicy component of FastDDS leads to a SIGABRT (signal abort) upon receiving DataWriter's data. **Recommendations** For versions 2.6.x through 2.12.x, consider disabling the HistoryQosPolicy component as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Gnuboard g6 versions before Github commit 58c737a263ac0c523592fd87ff71b9e3c07d7cf5 **Description** A Cross Site Scripting (XSS) issue allows remote attackers to execute arbitrary code via the `wr content` parameter. This enables attackers to inject malicious scripts into the website, potentially leading to unauthorized actions. **Recommendations** For Gnuboard g6 versions before Github commit 58c737a263ac0c523592fd87ff71b9e3c07d7cf5, consider disabling the `wr content` parameter to prevent exploitation until a patch is available. Restrict access to the affected module to minimize the risk of exploitation. Avoid using the `wr content` parameter in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libming version 0.4.8 **Description** A memory leak issue discovered in parseSWF FREECHARACTER in libming allows attackers to cause a denial of service via a crafted SWF file. **Recommendations** For libming version 0.4.8, consider updating to a newer version that contains a fix for this issue, as no specific workaround is provided for this version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libming version 0.4.8 **Description** A memory leak issue was discovered in the `parseSWF FILLSTYLEARRAY` function, allowing attackers to cause a denial of service via a crafted SWF file. **Recommendations** For libming version 0.4.8, consider updating to a newer version that contains a fix for this issue, as using a crafted SWF file can cause a denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libming version 0.4.8 **Description** A memory leak issue was discovered in the `parseSWF DEFINEBUTTON` function, allowing attackers to cause a denial of service via a crafted SWF file. **Recommendations** For libming version 0.4.8, consider updating to a newer version that addresses the memory leak issue in the `parseSWF DEFINEBUTTON` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libming version 0.4.8 **Description** A memory leak issue was discovered in the `parseSWF TEXTRECORD` function, allowing attackers to cause a denial of service via a crafted SWF file. **Recommendations** For libming version 0.4.8, consider updating to a newer version that contains a fix for this issue, as using a crafted SWF file can cause a denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-628 **Description** The issue is related to a Memory leak in the `AP4 Movie::AP4 Movie` function when parsing tracks and adding them to the `m Tracks` list. If an error occurs due to no audio track being found, `mp42aac` cannot correctly delete the tracks, leading to a memory leak. This allows attackers to cause a Denial of Service (DoS) via a crafted mp4 file. **Recommendations** For Bento4 version 1.5.1-628, consider updating to a newer version that addresses the memory leak issue in the `AP4 Movie::AP4 Movie` function. As a temporary workaround, restrict the use of `mp42aac` when parsing mp4 files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libming version 0.4.8 **Description** A memory leak issue was discovered in the `parseSWF GLYPHENTRY` function, allowing attackers to cause a denial of service via a crafted SWF file. **Recommendations** For libming version 0.4.8, consider updating to a newer version that contains a fix for this issue, as using a crafted SWF file can cause a denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.