Zjuchenyuan

**Name of the Vulnerable Software and Affected Versions** Gogs versions prior to 0.14.2 **Description** Gogs, a self-hosted Git service, has a flaw where Large File Storage (LFS) objects can be maliciously overwritten across different repositories. This is due to a lack of isolation in how LFS objects are stored, with repository IDs not being concatenated to the storage path. Additionally, Gogs does not verify the SHA-256 hash of uploaded LFS files, allowing attackers to inject malicious content. An attacker can exploit this by uploading a manipulated LFS object to their repository, which then overwrites the LFS object in another user's repository. This could lead to a supply-chain attack, as users downloading LFS objects from the webpage receive no warning about the altered content. The API endpoint '/api/v1/repos/{owner}/{repo}/lfs/objects' is involved in the upload process, and the `oid` variable identifies the LFS object. The `upload` function is used to handle the upload process. **Recommendations** Versions prior to 0.14.2 should be updated to version 0.14.2 or later to address this issue.

**Name of the Vulnerable Software and Affected Versions** ncurses versions prior to 6.1-20191012 **Description** The issue is related to a heap-based buffer over-read in the `fmt entry` function in `tinfo/comp hash.c` of the terminfo library. This could allow a remote attacker to disclose protected information and cause a denial of service. **Recommendations** For versions prior to 6.1-20191012, update to version 6.1-20191012 or later to resolve the issue. As a temporary workaround, consider restricting access to the `fmt entry` function in `tinfo/comp hash.c` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.32 **Description** The issue is related to the `find abstract instance` function in the `dwarf2.c` component of the BFD library, which is part of GNU Binutils. It allows remote attackers to cause a denial of service by triggering infinite recursion and application crash via a crafted ELF file. This is due to uncontrolled recursion in the `find abstract instance` function. **Recommendations** For GNU Binutils version 2.32, consider avoiding the use of the `find abstract instance` function in the `dwarf2.c` component until a patch is available. As a temporary workaround, restrict the processing of crafted ELF files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.32 **Description** The issue is related to an integer overflow in the Binary File Descriptor (BFD) library, specifically in the ` bfd dwarf2 find nearest line` function in `dwarf2.c`. This can lead to a segmentation fault (SEGV). The vulnerability is also described as affecting the ` bfd dwarf2 slurp debug info` function and is related to an integer overflow, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** For GNU Binutils version 2.32, consider updating to a newer version that addresses the integer overflow issue in the BFD library. As a temporary workaround, consider restricting access to the `dwarf2.c` component or the ` bfd dwarf2 find nearest line` and ` bfd dwarf2 slurp debug info` functions to minimize the risk of exploitation.