Sanjeevk001

**Name of the Vulnerable Software and Affected Versions** libjpeg-turbo versions 2.0.4 and earlier mozjpeg version 4.0.0 **Description** The issue is related to a heap-based buffer over-read in the `get rgb row()` function in `rdppm.c` via a malformed PPM input file. This can allow a remote attacker to access confidential data and cause a denial of service. The `start input ppm` function from `rdppm.c` in the libjpeg-turbo library is also affected by a buffer data boundary reading issue. **Recommendations** For libjpeg-turbo version 2.0.4, consider updating to a newer version that addresses the buffer over-read issue in `get rgb row()`. For mozjpeg version 4.0.0, restrict the use of malformed PPM input files to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider disabling the `get rgb row()` function in `rdppm.c` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Libarchive version 3.4.0 **Description** The issue is related to an out-of-bounds read in the `archive wstring append from mbs` function in `archive string.c`. This occurs due to an incorrect `mbrtowc` or `mbtowc` call. For example, `bsdtar` crashes when processing a crafted archive. The vulnerability may allow an attacker to read the contents of memory in the system using a specially crafted archive file. **Recommendations** For Libarchive version 3.4.0, consider updating to a newer version to mitigate the risk, as the current version has an out-of-bounds read issue in the `archive wstring append from mbs` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.