Shinobu

**Name of the Vulnerable Software and Affected Versions** glibc versions 2.2 and newer **Description** The deprecated functions `ns printrrf()`, `ns printrr()`, and `fp nquery()` fail to enforce the caller-supplied buffer length. This can lead to an out-of-bounds write, which occurs when data is written outside the boundaries of a pre-allocated fixed-length block of memory, specifically when printing TSIG records. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Simple Download Monitor versions 3.9.25 and earlier **Description** The issue is related to an SQL Injection vulnerability, specifically an Improper Neutralization of Special Elements used in an SQL Command. This allows for Blind SQL Injection, which can be exploited by attackers. **Recommendations** For Simple Download Monitor versions 3.9.25 and earlier, update to a version that contains a fix for this issue, as the current version is affected by the SQL Injection vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Google Web Stories versions n/a through 1.37.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious scripts into web pages, potentially affecting users who access these pages. Recommendations: For Google Web Stories versions n/a through 1.37.0, update to a version later than 1.37.0 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.