Sprabhav7

**Name of the Vulnerable Software and Affected Versions** CUPS versions prior to 2.4.16 **Description** A heap-based buffer overflow occurs in the CUPS scheduler when building filter option strings from job attributes. This issue is located in the `get options()` function and may allow a remote attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netty versions prior to 4.1.132.Final and versions prior to 4.2.10.Final **Description** Netty, an asynchronous, event-driven network application framework, is susceptible to a Denial of Service (DoS) attack. A remote user can exploit this by sending a flood of `CONTINUATION` frames to a Netty HTTP/2 server. The server does not limit the number of `CONTINUATION` frames it accepts, and existing size-based protections are bypassed when zero-byte frames are used. This allows an attacker to cause excessive CPU consumption with minimal bandwidth, rendering the server unresponsive. The issue resides in the `DefaultHttp2FrameReader` component, specifically within the `verifyContinuationFrame()` function, which lacks a frame count check. The `HeadersBlockBuilder.addFragment()` function also allows bypassing the byte limit with zero-byte frames. **Recommendations** Upgrade to Netty version 4.1.132.Final or later. Upgrade to Netty version 4.2.10.Final or later.

**Name of the Vulnerable Software and Affected Versions** jackson-core versions 3.0.0 through 3.0.x **Description** jackson-core contains core low-level incremental ("streaming") parser and generator abstractions. The `UTF8DataInputJsonParser` and `ReaderBasedJsonParser` bypass the `maxNestingDepth` constraint defined in `StreamReadConstraints`. This allows a user to supply a JSON document with excessive nesting, which can cause a `StackOverflowError` when the structure is processed, leading to a Denial of Service (DoS). The `maxNestingDepth` constraint has a default value of 500. The issue was addressed by adding a check that throws a `StreamConstraintsException` if the limit is reached. **Recommendations** jackson-core versions 3.0.0 through 3.0.x should be upgraded to version 3.1.0 or later.