Yuawn

**Name of the Vulnerable Software and Affected Versions** libsndfile (affected versions not specified) **Description** An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. This issue could be triggered by an attacker submitting a specially crafted file to an application linked with libsndfile and using the FLAC codec, potentially causing a crash or leaking memory information that could be used in further exploitation of other flaws. The vulnerability may allow a remote attacker to gain unauthorized access to protected information and cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Exiv2 versions v0.27.3 and earlier **Description** A read of uninitialized memory was found in Exiv2, which is triggered when the utility is used to read the metadata of a crafted image file. This could potentially allow an attacker to leak a few bytes of stack memory if they can trick the victim into running Exiv2 on a crafted image file. The vulnerability is related to the use of an uninitialized resource and may allow an attacker to gain unauthorized access to protected information. **Recommendations** For Exiv2 versions v0.27.3 and earlier, update to version v0.27.4 to resolve the issue. As a temporary workaround, consider avoiding the use of Exiv2 to read metadata from untrusted image files until the update is applied.

**Name of the Vulnerable Software and Affected Versions** OpenJPEG (affected versions not specified) **Description** The issue is related to a heap-based buffer overflow in the color.c component of the OpenJPEG library, specifically in the sycc420 to rgb function. This can be exploited by a remote attacker using a specially crafted .j2k file, potentially allowing access to confidential data, disruption of data integrity, and denial of service. The vulnerability also enables an attacker to execute arbitrary code with the permissions of the application compiled against OpenJPEG. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Exiv2 versions prior to 0.27.4-RC1 **Description** The issue is related to the `Jp2Image::readMetadata()` function in the `jp2image.cpp` component of the Exiv2 library, which is used for managing media file metadata. The problem arises from improper input validation of the `rawData.size` property. This can lead to a heap-based buffer overflow when a specially crafted JPG image containing malicious EXIF data is processed. As a result, a remote attacker could potentially gain access to confidential data and cause a denial of service. **Recommendations** For Exiv2 versions prior to 0.27.4-RC1, consider updating to a version later than 0.27.4-RC1 to resolve the issue. As a temporary workaround, consider restricting the use of the `Jp2Image::readMetadata()` function in `jp2image.cpp` until a patch is available. Avoid using the `rawData.size` property in the affected `Jp2Image::readMetadata()` function until the issue is resolved.