6 matches found
Mageia: Security Advisory (MGASA-2022-0191)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0191 Updated htmldoc packages fix security vulnerability
There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...
Debian: Security Advisory (DLA-3004-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-27114
creationtimestamp| type| source ---|---|--- 2022-05-09 20:36:48+00:00| seen| https://t.me/cibsecurity/42198...
CVE-2022-27114
There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...
CVE-2022-27114
CVE-2022-27114 affects htmldoc 1.9.16. In image_load_jpeg (image.cxx), malloc is used for img->width/height in a way that can overflow, causing the allocated heap block to be smaller than expected and leading to a buffer overflow in jpeg_read_scanlines. Connected sources corroborate a memory/h...