Zfeixqo

**Name of the Vulnerable Software and Affected Versions** Tcpreplay version 4.4.1 **Description** A double-free issue was discovered via ` interceptor free`. **Recommendations** For Tcpreplay version 4.4.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** rtl 433 version 21.12 **Description** The issue is related to a stack overflow in the `acurite 00275rm decode` function located at `/devices/acurite.c`. This allows attackers to cause a Denial of Service (DoS) via a crafted file. **Recommendations** For rtl 433 version 21.12, consider disabling the `acurite 00275rm decode` function as a temporary workaround until a patch is available. Restrict access to crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Tcpreplay version 4.4.1 **Description** The issue is a heap-based buffer overflow in the `do checksum math` function located at `/tcpedit/checksum.c`. **Recommendations** For Tcpreplay version 4.4.1, consider applying a patch or fix to address the heap-based buffer overflow in the `do checksum math` function. As a temporary workaround, restrict access to the `do checksum math` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** The issue is related to an invalid free vulnerability in the binary MP4Box, which can lead to a Denial of Service (DoS). This vulnerability occurs via the function `gf free()` at `utils/alloc.c`. **Recommendations** For GPAC version 1.1.0, consider restricting access to the `gf free()` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** A NULL pointer dereference issue exists via the function `gf sg vrml field pointer del()` at `scenegraph/vrml tools.c`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, consider disabling the `gf sg vrml field pointer del()` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.1.0 **Description** An untrusted pointer dereference issue exists via the function `gf node unregister()` at `scenegraph/base scenegraph.c`, which can lead to a Denial of Service (DoS). **Recommendations** For GPAC version 1.1.0, as a temporary workaround, consider disabling the `gf node unregister()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.13.1-1 **Description** The issue is related to an untrusted pointer dereference vulnerability in the function `H5O dtype decode helper()` at `hdf5/src/H5Odtype.c` in the HDF5 library. This vulnerability can lead to a Denial of Service (DoS) and can be exploited by a remote attacker, potentially causing service disruption. **Recommendations** For HDF5 version 1.13.1-1, as a temporary workaround, consider disabling the `H5O dtype decode helper()` function until a patch is available. Restrict access to the vulnerable `H5Odtype.c` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.13.1-1 **Description** The issue is related to a null pointer dereference in the H5AC unpin entry component of the HDF5 library. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of information. It is also described as a heap-use-after-free vulnerability via the H5AC unpin entry component. **Recommendations** For HDF5 version 1.13.1-1, as a temporary workaround, consider disabling the `H5AC unpin entry` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 103 **Description** A Stack Overflow issue exists via the `printf common` function. This allows for a potential overflow, which could be exploited. **Recommendations** For Binaryen version 103, consider disabling the `printf common` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** The issue can cause a denial of service, which is context-dependent. **Recommendations** For GPAC version 1.0.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists in the `gf isom box size` function, which could cause a Denial of Service (context-dependent). **Recommendations** For GPAC version 1.0.1, consider disabling the `gf isom box size` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists via the `gf hinter finalize` function. This issue allows for potential exploitation. No information is provided about the estimated number of affected devices or real-world incidents. **Recommendations** For GPAC version 1.0.1, consider disabling the `gf hinter finalize` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists via the `gf fileio check` function, which could cause a Denial of Service. This issue affects GPAC and could potentially lead to service disruption. **Recommendations** For GPAC version 1.0.1, as a temporary workaround, consider disabling the `gf fileio check` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists via the `Media IsSelfContained` function, which could cause a Denial of Service. **Recommendations** For GPAC version 1.0.1, consider disabling the `Media IsSelfContained` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 104 **Description** A Denial of Service issue exists due to an assertion abort in wasm::Tuple::validate. **Recommendations** For Binaryen version 104, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 103 **Description** A Denial of Service issue exists, causing the program to terminate with the SIGKILL signal. **Recommendations** For Binaryen version 103, consider temporarily restricting access to the program to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 104 **Description** A Denial of Service issue exists due to an assertion abort in `wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*)`. **Recommendations** For Binaryen version 104, consider disabling the `visitRethrow()` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Binaryen version 104 **Description** A Denial of Service issue exists due to an assertion abort in the `wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*)` function. **Recommendations** For Binaryen version 104, consider disabling the `wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*)` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists via the `shift chunk offsets.part` function, which causes a Denial of Service. This issue is context-dependent. **Recommendations** For GPAC version 1.0.1, as a temporary workaround, consider disabling the `shift chunk offsets.part` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GPAC version 1.0.1 **Description** A Pointer Dereference issue exists via the `finplace shift moov meta offsets` function, which causes a Denial of Service. **Recommendations** For GPAC version 1.0.1, consider disabling the `finplace shift moov meta offsets` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.