Oleksandr Bazhaniuk

**Name of the Vulnerable Software and Affected Versions** Infineon S-Gold 2 (PMB 8876) chipset versions used in various vehicle models produced between 2009-2016 **Description** An issue with improper restriction of operations within the bounds of a memory buffer was found. This issue may allow an attacker to access and control memory, potentially enabling remote code execution on the baseband radio processor of the Telematics Control Unit (TCU). The vulnerability is related to the temporary mobile subscriber identity (TMSI). **Recommendations** For the Infineon S-Gold 2 (PMB 8876) chipset used in the affected vehicle models, consider restricting access to the vulnerable TMSI component until a patch or fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** The issue is related to a buffer overflow in the `mipsnet receive` function, which can be triggered when the guest NIC is configured to accept large packets. This allows remote attackers to cause a denial of service, resulting in memory corruption and a crash of QEMU, or possibly execute arbitrary code via a packet larger than 1514 bytes. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** The issue is related to a buffer overflow in the `stellaris enet receive` function, which can cause a denial of service (QEMU crash) when the Stellaris ethernet controller is configured to accept large packets. This can be triggered by remote attackers sending a large packet. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.