Valdikss

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A null pointer dereference issue in the Linux kernel has been identified. The problem occurs in the `raid10 size()` function when `mddev->private` is still `NULL` after `raid10 set queue limits()` succeeds, and subsequent procedures fail, causing `raid10 run()` to return zero. This issue is resolved by only overwriting the return value if `raid10 set queue limits()` fails. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Gajim versions 1.2.x through 1.3.2 **Description** The issue is related to insufficient input validation when checking message IDs in multi-user chat, specifically with the XEP-0308 Last Message Correction extension. This allows remote attackers to cause a denial of service (crash) via a crafted XMPP message where the message ID equals the correction ID. **Recommendations** For Gajim versions 1.2.x through 1.3.2, update to version 1.3.3 or later to resolve the issue. As a temporary workaround, consider disabling the XEP-0308 Last Message Correction extension in multi-user chat until a patch is available.