Zfeixq

**Name of the Vulnerable Software and Affected Versions** DjVuLibre version 3.5.28 **Description** The issue is related to a lack of check for division by zero in the IW44EncodeCodec.cpp component of the DjVuLibre library, which is used for viewing, creating, and editing DjVu files. This can be exploited by a remote attacker to cause a denial of service. The vulnerability allows attackers to cause a denial of service via divide by zero. **Recommendations** For DjVuLibre version 3.5.28, consider disabling the IW44EncodeCodec.cpp component as a temporary workaround until a patch is available. Restrict access to the vulnerable component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** djvulibre version 3.5.28 **Description** The issue is related to a lack of check for division by zero in the IW44Image.cpp component of the djvulibre library, which allows attackers to cause a denial of service. This can be exploited by a remote attacker to disrupt service. **Recommendations** For djvulibre version 3.5.28, consider applying a patch or updating to a newer version that fixes the issue in IW44Image.cpp to prevent division by zero errors. As a temporary workaround, consider restricting access to the IW44Image.cpp component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** A NULL pointer dereference issue exists via the function `gf sg destroy routes()` at `scenegraph/vrml route.c`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, as a temporary workaround, consider disabling the `gf sg destroy routes()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** A NULL pointer dereference issue exists via the function `gf node unregister()` at `scenegraph/base scenegraph.c`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, as a temporary workaround, consider disabling the `gf node unregister()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** The issue is related to a stack overflow via the function `gf node get name()` at `scenegraph/base scenegraph.c`. This can lead to a program crash, causing a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, as a temporary workaround, consider disabling the `gf node get name()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** A NULL pointer dereference issue exists via the function `gf dump vrml sffield()` at `scene manager/scene dump.c`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, consider disabling the `gf dump vrml sffield()` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A segmentation fault was discovered in the binary MP4Box via the function ` memmove avx unaligned erms()`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.0.1, as a temporary workaround, consider disabling the use of the ` memmove avx unaligned erms()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.13.1-1 **Description** The issue is related to a Divide By Zero vulnerability in the `H5T complete copy()` function, located in the H5T.c file of the HDF5 library. This vulnerability can cause an arithmetic exception, leading to a Denial of Service (DoS). A remote attacker could potentially exploit this issue, resulting in a service disruption. **Recommendations** For HDF5 version 1.13.1-1, consider disabling the `H5T complete copy()` function as a temporary workaround until a patch is available. Restrict access to the H5T.c file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 104 **Description** A Denial of Service issue exists due to an assertion abort in the `wasm::WasmBinaryBuilder::readFunctions` function. **Recommendations** For Binaryen version 104, consider disabling the `wasm::WasmBinaryBuilder::readFunctions` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Segmentation Fault issue exists via the `co64 box new` function, causing a Denial of Service. **Recommendations** For GPAC version 1.0.1, consider disabling the `co64 box new` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.13.1-1 **Description** A Stack-based Buffer Overflow issue exists in the HDF5 library, specifically in the file H5Eint.c, which can cause a Denial of Service. This issue is related to uncontrolled recursion. The exploitation of this issue may allow an attacker to cause a denial of service. **Recommendations** For HDF5 version 1.13.1-1, consider disabling access to the vulnerable file H5Eint.c as a temporary workaround until a patch is available. Restrict the use of the HDF5 library to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.13.1-1 **Description** The issue is related to a segmentation fault, causing a Denial of Service. It is associated with incorrect disabling or release of resources. Exploitation of this issue may allow an attacker to cause a denial of service. **Recommendations** For HDF5 version 1.13.1-1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Gpac version 1.0.1 Description: An infinite loop issue exists in the gf get bit size function of Gpac. Recommendations: For Gpac version 1.0.1, consider disabling the gf get bit size function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Binaryen version 103 Description: A Denial of Service issue exists due to an invalid memory address dereference in the `wasm::WasmBinaryBuilder::visitLet()` function. Recommendations: For Binaryen version 103, consider disabling the `wasm::WasmBinaryBuilder::visitLet()` function as a temporary workaround until a patch is available.