Rookie

**Name of the Vulnerable Software and Affected Versions** libarchive versions up to 3.7.7 **Description** A problematic issue was found in libarchive, affecting the `list` function of the file bsdunzip.c. This issue leads to a null pointer dereference. The attack can be launched on the local host. **Recommendations** For versions up to 3.7.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192 Description: A vulnerability has been found in GNU elfutils, affecting the function `handle dynamic symtab` of the file `readelf.c` in the `eu-read` component. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. Recommendations: For GNU elfutils version 0.192, it is recommended to apply a patch to fix this issue. The patch is identified as b38e562a4c907e08171c76b8b2def8464d5a104a. As a temporary workaround, consider disabling the `handle dynamic symtab` function until a patch is available.

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192 Description: A critical vulnerability was found in GNU elfutils. The issue affects the function `dump data section/print string section` of the file readelf.c in the eu-readelf component. The manipulation of the argument `z/x` leads to a buffer overflow. An attack must be approached locally. The exploit has been disclosed to the public and may be used. Recommendations: To fix this issue, it is recommended to apply a patch. The identifier of the patch is 73db9d2021cab9e23fd734b0a76a612d52a6f1db. As a temporary workaround, consider disabling the `dump data section/print string section` function until a patch is available. Restrict access to the vulnerable component eu-readelf to minimize the risk of exploitation. Avoid using the argument `z/x` in the affected function until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192 Description: A critical issue has been found in GNU elfutils, affecting the ` libdw thread tail` function in the `libdw alloc.c` library of the `eu-readelf` component. The manipulation of the argument `w` leads to memory corruption. The attack can be initiated remotely, with a rather high complexity, and the exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. Recommendations: To fix this issue, it is recommended to apply a patch, specifically the one with the name `2636426a091bd6c6f7f02e49ab20d4cdc6bfc753`. As a temporary workaround, consider disabling the ` libdw thread tail` function until a patch is available. Restrict access to the `libdw alloc.c` library to minimize the risk of exploitation. Avoid using the argument `w` in the affected function until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192 Description: A critical issue was found in GNU elfutils. This affects the `process symtab` function of the `readelf.c` file in the `eu-readelf` component. The manipulation of the `D/a` argument leads to a buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Recommendations: To fix this issue, apply a patch to GNU elfutils version 0.192. As a temporary workaround, consider restricting access to the `eu-readelf` component until a patch is available. Avoid using the `D/a` argument in the affected `readelf.c` file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** nasm version 2.14.02 **Description** A Use After Free issue in the `new Token` function in `asm/preproc.c` allows attackers to cause a denial of service via a crafted nasm command. **Recommendations** For nasm version 2.14.02, consider disabling the `new Token` function in `asm/preproc.c` as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libtiff version 4.0.10 **Description** The issue is related to a heap buffer overflow in the ` TIFFmemcpy` function in `tif unix.c` of the libtiff library. This allows an attacker to cause a denial-of-service through a crafted tiff file. The vulnerability is associated with writing beyond the buffer boundaries in memory, which can be exploited to disrupt service. **Recommendations** For libtiff version 4.0.10, consider disabling the ` TIFFmemcpy` function as a temporary workaround until a patch is available. Restrict access to crafted tiff files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** An issue in the Binary File Descriptor (BFD) library allows an attacker to cause a denial of service through a crafted PE file. This can be triggered by the executable objdump. The vulnerability is related to a heap-based buffer over-read in the `bfd getl32` function in `libbfd.c`. It enables a remote attacker to disrupt service using a specially crafted file. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk, as the current version contains a heap-based buffer over-read vulnerability in the `bfd getl32` function. As a temporary workaround, consider restricting the use of the `objdump` executable until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** The issue is related to an invalid memory access in the ` bfd stab section find nearest line` function of the `syms.c` component in the GNU Binutils. This can be exploited by an attacker to cause a denial of service, resulting in an application crash, by using a specially crafted ELF file. The vulnerability is associated with a buffer overflow in memory. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, restrict the use of specially crafted ELF files to minimize the risk of causing a denial of service.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.31 **Description** An issue exists in the Binary File Descriptor (BFD) library, specifically in the `bfd zalloc` function within the `opncls.c` component. This issue is related to an invalid memory access, which can be exploited by attackers to cause a denial of service (application crash) via a crafted ELF file. The vulnerability allows a remote attacker to disrupt service using a specially crafted ELF file. **Recommendations** For GNU Binutils version 2.31, consider updating to a newer version to mitigate the risk, as the current version contains an invalid memory access issue in the `bfd zalloc` function. As a temporary workaround, consider restricting the use of crafted ELF files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.14rc15 **Description** The issue is related to an invalid memory write in the `expand smacro` function in `preproc.c`, which can cause a denial of service. This is due to errors in memory deallocation. Attackers can exploit this by providing a crafted input file, leading to a segmentation fault. The estimated number of potentially affected devices is not specified. **Recommendations** For Netwide Assembler (NASM) version 2.14rc15, consider avoiding the use of the `expand smacro` function in `preproc.c` until a patch is available. As a temporary workaround, restrict the input files to prevent crafted files from being processed. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LibTIFF version 4.0.9 **Description** The issue is related to a NULL pointer dereference in the ` TIFFmemcmp` function, which can be triggered by a crafted tiff file, allowing an attacker to cause a denial-of-service. This can be exploited through the `tiffcp` executable. The vulnerability is also described as a buffer overflow in memory, which can lead to a denial-of-service when a specially crafted tiff file is used. **Recommendations** For LibTIFF version 4.0.9, consider avoiding the use of the `tiffcp` executable with untrusted tiff files until a patch is available. As a temporary workaround, restrict the handling of tiff files to trusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to the bfd elf parse attributes function in the elf-attrs.c component of GNU Binutils, which is associated with unlimited memory allocation. This can be exploited by a remote attacker using a specially crafted ELF file, leading to a denial of service (excessive memory allocation and application crash). The vulnerability can be triggered during the execution of nm, for example, via the bfd elf parse attributes function in elf-attrs.c and the bfd malloc function in libbfd.c. **Recommendations** For GNU Binutils version 2.30, consider disabling the bfd elf parse attributes function as a temporary workaround until a patch is available. Restrict access to the elf-attrs.c component to minimize the risk of exploitation. Avoid using specially crafted ELF files that could trigger the excessive memory allocation issue.

**Name of the Vulnerable Software and Affected Versions** PoDoFo version 0.9.6-rc1 **Description** The issue is related to an invalid memory read in the `PoDoFo::PdfVariant::DelayedLoad()` function, located in `PdfVariant.h`. This can be exploited by remote attackers using a crafted file, leading to a denial-of-service impact. **Recommendations** For PoDoFo version 0.9.6-rc1, consider avoiding the use of the `DelayedLoad()` function until a patch is available. As a temporary workaround, restrict the processing of crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: LibTIFF versions 3.9.3 through 4.0.9 Description: The issue is related to a heap-based buffer overflow in the `cpSeparateBufToContigBuf` function, which can be exploited by remote attackers using a crafted TIFF file. This can lead to a denial of service (crash) or potentially have other unspecified impacts. The vulnerability is also associated with a buffer overflow operation that allows a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. Recommendations: For LibTIFF versions 3.9.3 through 4.0.9, consider disabling the `cpSeparateBufToContigBuf` function until a patch is available to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.