Yifan Zhang

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.45 **Description** A flaw exists in the Linker component of GNU Binutils 2.45, specifically within the `get link hash entry` function located in the `bfd/elflink.c` file. This issue allows for an out-of-bounds read. The vulnerability can only be exploited locally and has been publicly disclosed. **Recommendations** Upgrade to version 2.46 to address this issue.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.45 **Description** A heap-based buffer overflow exists in the Linker component of GNU Binutils. The issue is located in the `elf x86 64 relocate section` function within the `elf64-x86-64.c` file. This manipulation can be exploited locally. The exploit has been publicly disclosed. **Recommendations** Deploy patch 6b21c8b2ecfef5c95142cbc2c32f185cb1c26ab0.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.45 **Description** An issue exists in GNU Binutils that involves an out-of-bounds read within the ` bfd x86 elf late size sections` function, located in the `bfd/elfxx-x86.c` file of the Linker component. The vulnerability is locally exploitable. The exploit has been publicly disclosed. **Recommendations** Apply the patch identified as b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils versions prior to 2.46 **Description** A flaw exists in the Linker component of GNU Binutils, specifically within the `elf link add object symbols` function located in the `bfd/elflink.c` file. This issue leads to an out-of-bounds read condition. Local access is required for exploitation. The exploit has been publicly disclosed. **Recommendations** Upgrade to version 2.46 or later to address this issue.

**Name of the Vulnerable Software and Affected Versions:** plan9port versions prior to 9da5b44 **Description:** A critical vulnerability exists in the `edump` function within the `/src/plan9port/src/libsec/port/x509.c` library. Manipulation of this function leads to a heap-based buffer overflow. The exploit for this issue has been publicly disclosed and may be actively exploited. This product utilizes a rolling release model, therefore specific version details for affected and updated releases are unavailable. **Recommendations:** Apply the patch with identifier b3e06559475b0130a7a2fb56ac4d131d13d2012f to address this issue.

Name of the Vulnerable Software and Affected Versions: gdk-pixbuf (affected versions not specified) glib (affected versions not specified) Description: A flaw exists in gdk-pixbuf and glib, specifically in the gdk pixbuf jpeg image load increment function and g base64 encode step, respectively. When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory. This could potentially cause application crashes or arbitrary code execution. Recommendations: For gdk-pixbuf, consider disabling the gdk pixbuf jpeg image load increment function until a patch is available. For glib, restrict the use of the g base64 encode step function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions up to 6.7.10/6.8.1 **Description** The issue is related to an out-of-bounds access in the mmhub client id handling, specifically with cid 0x140. This has been resolved by properly handling the cid. **Recommendations** Update to a version later than 6.7.10/6.8.1 to resolve the issue. As a temporary workaround, consider restricting access to the drm/amdgpu module until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on Android versions prior to 72.0.3626.81 **Description** The issue concerns insufficient protection of permission UI in WebAPKs, allowing an attacker to access privacy and security-sensitive web APIs. This can occur if the user is convinced to install a malicious application. The exploitation enables a remote attacker to gain unauthorized access to information using a specially crafted APK. **Recommendations** For versions prior to 72.0.3626.81, update to version 72.0.3626.81 or later to resolve the issue.