William Robinet

**Name of the Vulnerable Software and Affected Versions** Ghostscript versions 9.15 and earlier **Description** The issue is caused by an integer overflow in the `gs heap alloc bytes` function, which can lead to a denial of service (crash) when processing a crafted Postscript file. This can be triggered using the `ps2pdf` command, resulting in an out-of-bounds read or write. **Recommendations** For Ghostscript versions 9.15 and earlier, update to a version later than 9.15 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** unzoo (affected versions not specified) **Description** A buffer overflow issue exists in the EntrReadArch function, potentially allowing remote attackers to execute arbitrary code through unspecified vectors. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** unzoo (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in an infinite loop and resource consumption. This is related to pointer handling in the (1) ExtrArch or (2) ListArch function. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libXfont versions prior to 1.4.9 libXfont versions 1.5.x prior to 1.5.1 **Description** The issue is related to the `bdfReadCharacters` function in `bitmap/bdfread.c`, which does not properly perform type conversion for metrics values. This allows remote authenticated users to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via a crafted BDF font file. **Recommendations** For libXfont versions prior to 1.4.9, update to version 1.4.9 or later. For libXfont versions 1.5.x prior to 1.5.1, update to version 1.5.1 or later.

**Name of the Vulnerable Software and Affected Versions** Info-Zip UnZip version 6.10b **Description** The issue is related to a buffer overflow in the charset to intern function, which can be exploited by remote attackers to execute arbitrary code. This is achieved by converting a crafted string, for example, from CP866 to UTF-8. **Recommendations** For Info-Zip UnZip version 6.10b, consider updating to a newer version that addresses this issue, as using a crafted string to exploit the buffer overflow in the charset to intern function poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LibTIFF (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service due to uninitialized memory access via a crafted TIFF image. This is related to the `putcontig8bitYCbCr21tile` function in `tif getimage.c` or the `NeXTDecode` function in `tif next.c`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LibTIFF version 4.0.3 **Description** The issue allows remote attackers to cause a denial of service or possibly have other unspecified impacts via a crafted TIFF image. This is demonstrated by the failure of tif next.c to verify that the BitsPerSample value is 2, and the t2p sample lab signed to unsigned function in tiff2pdf.c. **Recommendations** For LibTIFF version 4.0.3, update to a newer version that contains a fix for this issue.