Lucene search

K
rosalinuxROSA LABROSA-SA-2024-2399
HistoryApr 17, 2024 - 1:31 p.m.

Advisory ROSA-SA-2024-2399

2024-04-1713:31:16
ROSA LAB
abf.rosalinux.ru
15
htmldoc
rosa-chrome
buffer overflow
arbitrary code execution
denial of service
update command

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.005

Percentile

75.2%

software: htmldoc 1.9.16
OS: ROSA-CHROME

package_evr_string: htmldoc-1.9.16-1.src.rpm

CVE-ID: CVE-2021-23165
BDU-ID: None
CVE-Crit: CRITICAL
CVE-DESC.: An error was detected in htmldoc. Heap buffer overflow in pspdf_prepare_outpages(), in ps-pdf.cxx may cause arbitrary code execution and denial of service.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update htmldoc

CVE-ID: CVE-2021-40985
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: A stack-based buffer under-read in htmldoc allows attackers to cause a denial of service via the generated BMP image for image_load_bmp.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update htmldoc

CVE-ID: CVE-2022-0137
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: Heap buffer overflow in the image_set_mask HTMLDOC function allows an attacker to write outside the buffer.
CVE-STATUS: Fixed
CVE-REV: To close, execute command: sudo dnf update htmlldoc

CVE-ID: CVE-2022-24191
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: In HTMLDOC, an infinite loop in the gif_read_lzw function may cause the pointer to arbitrarily point to dynamic memory, resulting in a buffer overflow.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update htmldoc

CVE-ID: CVE-2022-28085
BDU-ID: None
CVE-Crit: HIGH
CVE-DESC.: An error was detected in htmldoc commit 31f7804. Heap buffer overflow in the pdf_write_names function in ps-pdf.cxx can lead to arbitrary code execution and denial of service (DoS).
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update htmldoc

OSVersionArchitecturePackageVersionFilename
ROSAanynoarchhtmldoc< 1.9.16UNKNOWN

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.005

Percentile

75.2%