Tmodes

**Name of the Vulnerable Software and Affected Versions** libpano13 version libpano13-2.9.20 **Description** A null pointer dereference was found in libpano13. The flow allows attackers to cause a denial of service and potential code execution via a crafted file. **Recommendations** For libpano13 version libpano13-2.9.20, consider updating to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Panorama Tools libpano13 version v2.9.20 **Description** The issue is related to an out-of-bounds read in the function `panoParserFindOLine()` in the file `parser.c`. This out-of-bounds read can potentially lead to information disclosure or other security issues. **Recommendations** For Panorama Tools libpano13 version v2.9.20, consider applying a patch or fix that addresses the out-of-bounds read in the `panoParserFindOLine()` function as soon as it becomes available. As a temporary workaround, consider restricting access to the `parser.c` file or the `panoParserFindOLine()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.