Solar Eclipse

**Name of the Vulnerable Software and Affected Versions** OSH versions prior to 1.7-15 **Description** The issue concerns multiple vulnerabilities in the OSH package of the Debian GNU/Linux operating system. These vulnerabilities can be exploited by a local attacker, potentially leading to breaches of confidentiality, integrity, and availability of protected information. A specific vulnerability involves a buffer overflow in OSH, which can be triggered by a local user providing a long current working directory and filename, allowing the execution of arbitrary code. **Recommendations** For OSH versions prior to 1.7-15, update to version 1.7-15 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive directories and files to minimize the risk of exploitation. Avoid using excessively long filenames and directory paths in the affected OSH versions until the issue is resolved.