Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-2700-1:78FB0
HistoryJul 01, 2021 - 12:59 a.m.

[SECURITY] [DLA 2700-1] htmldoc security update

2021-07-0100:59:58
lists.debian.org
34

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.8%

JSON

Debian LTS Advisory DLA-2700-1 [email protected]
https://www.debian.org/lts/security/ Utkarsh Gupta
July 01, 2021 https://wiki.debian.org/LTS

Package : htmldoc
Version : 1.8.27-8+deb9u1
CVE ID : CVE-2019-19630 CVE-2021-20308 CVE-2021-23158
CVE-2021-23165 CVE-2021-23180 CVE-2021-23191
CVE-2021-23206 CVE-2021-26252 CVE-2021-26259
CVE-2021-26948

A buffer overflow was discovered in HTMLDOC, a HTML processor that
generates indexed HTML, PS, and PDF, which could potentially result
in the execution of arbitrary code. In addition a number of crashes
were addressed.

For Debian 9 stretch, these problems have been fixed in version
1.8.27-8+deb9u1.

We recommend that you upgrade your htmldoc packages.

For the detailed security status of htmldoc please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/htmldoc

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian9armelhtmldoc< 1.8.27-8+deb9u1htmldoc_1.8.27-8+deb9u1_armel.deb
Debian10s390xhtmldoc< 1.9.3-1+deb10u2htmldoc_1.9.3-1+deb10u2_s390x.deb
Debian10mips64elhtmldoc< 1.9.3-1+deb10u2htmldoc_1.9.3-1+deb10u2_mips64el.deb
Debian9amd64htmldoc< 1.8.27-8+deb9u1htmldoc_1.8.27-8+deb9u1_amd64.deb
Debian10armhfhtmldoc< 1.9.3-1+deb10u2htmldoc_1.9.3-1+deb10u2_armhf.deb
Debian9arm64htmldoc< 1.8.27-8+deb9u1htmldoc_1.8.27-8+deb9u1_arm64.deb
Debian10allhtmldoc-common< 1.9.3-1+deb10u2htmldoc-common_1.9.3-1+deb10u2_all.deb
Debian9allhtmldoc-common< 1.8.27-8+deb9u1htmldoc-common_1.8.27-8+deb9u1_all.deb
Debian10mipshtmldoc< 1.9.3-1+deb10u2htmldoc_1.9.3-1+deb10u2_mips.deb
Debian10amd64htmldoc< 1.9.3-1+deb10u2htmldoc_1.9.3-1+deb10u2_amd64.deb
Rows per page:
1-10 of 191

Related

osv 17
openvas 13
nessus 10
mageia 2
debian 2
ubuntu 4
cnvd 5
cve 10
ubuntucve 10
prion 10
fedora 2
suse 4
debiancve 10
veracode 10
redhatcve 2
rosalinux 1
osv
osv
htmldoc - security update
2021-07-01 00:00:00
htmldoc - security update
2021-06-09 00:00:00
CVE-2021-26948
2022-03-03 23:15:08
openvas
openvas
Debian: Security Advisory (DLA-2700-1)
2021-07-01 00:00:00
Debian: Security Advisory (DSA-4928-1)
2021-06-11 00:00:00
Mageia: Security Advisory (MGASA-2021-0332)
2022-01-28 00:00:00
nessus
nessus
Debian DSA-4928-1 : htmldoc - security update
2021-06-11 00:00:00
Debian DLA-2700-1 : htmldoc - LTS security update
2021-07-01 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : HTMLDOC vulnerability (USN-4696-1)
2021-01-18 00:00:00
mageia
mageia
Updated htmldoc packages fix security vulnerabilities
2021-07-10 15:56:54
Updated htmldoc packages fix security vulnerability
2019-12-19 16:44:26
debian
debian
[SECURITY] [DSA 4928-1] htmldoc security update
2021-06-09 21:09:32
[SECURITY] [DLA 2026-1] htmldoc security update
2019-12-09 11:28:44
ubuntu
ubuntu
HTMLDOC vulnerability
2021-01-18 00:00:00
HTMLDOC vulnerability
2022-05-23 00:00:00
HTMLDOC vulnerability
2021-12-16 00:00:00
cnvd
cnvd
HTMLDOC input validation error vulnerability
2021-06-16 00:00:00
HTMLDOC Input Validation Error Vulnerability (CNVD-2021-80279)
2021-06-16 00:00:00
HTMLDOC resource management error vulnerability
2021-06-16 00:00:00
cve
cve
CVE-2021-23158
2022-03-16 15:15:00
CVE-2021-23191
2022-03-02 23:15:00
CVE-2019-19630
2019-12-08 02:15:00
ubuntucve
ubuntucve
CVE-2021-23158
2022-03-16 00:00:00
CVE-2019-19630
2019-12-08 00:00:00
CVE-2021-23191
2022-03-02 00:00:00
prion
prion
Stack overflow
2019-12-08 02:15:00
Double free
2022-03-16 15:15:00
Null pointer dereference
2022-03-02 23:15:00
fedora
fedora
[SECURITY] Fedora 31 Update: htmldoc-1.9.7-1.fc31
2020-01-05 00:42:43
[SECURITY] Fedora 30 Update: htmldoc-1.9.7-1.fc30
2020-01-04 22:16:40
suse
suse
Security update for htmldoc (important)
2021-06-18 00:00:00
Security update for htmldoc (important)
2021-06-18 00:00:00
Security update for htmldoc (important)
2021-09-15 00:00:00
debiancve
debiancve
CVE-2021-23165
2022-03-16 15:15:00
CVE-2019-19630
2019-12-08 02:15:00
CVE-2021-23158
2022-03-16 15:15:00
veracode
veracode
Arbitrary Code Execution
2021-06-12 18:21:18
Remote Code Execution (RCE)
2021-05-12 00:58:20
Buffer Overflow
2021-07-02 07:43:33
redhatcve
redhatcve
CVE-2021-23180
2022-05-20 23:44:14
CVE-2021-23165
2022-05-20 23:25:24
rosalinux
rosalinux
Advisory ROSA-SA-2024-2399
2024-04-17 13:31:16

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.8%

JSON
Related for DEBIAN:DLA-2700-1:78FB0
osv17openvas13nessus10mageia2debian2ubuntu4cnvd5cve10ubuntucve10prion10fedora2suse4debiancve10veracode10redhatcve2rosalinux1