CVE-2022-34035

HTMLDoc v1.9.12 and below was discovered to contain a heap overflow via enode htmldoc/htmldoc/html.cxx:588...

CVE-2022-34033

HTMLDoc v1.9.15 was discovered to contain a heap overflow via writeheader /htmldoc/htmldoc/html.cxx:273...

CVE-2022-34033

HTMLDoc v1.9.15 was discovered to contain a heap overflow via writeheader /htmldoc/htmldoc/html.cxx:273...

CVE-2022-34033

Summary: CVE-2022-34033 affects HTMLDOC v1.9.15 and is caused by a heap overflow in the write_header function (htmldoc/htmldoc/html.cxx:273). The issue is reported across multiple advisories and feeds, with the Ubuntu/Gentoo and Astra Linux entries corroborating the same root cause. Impact: poten...

HTMLDOC 缓冲区错误漏洞

HTMLDOC is an open source program that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript and PDF formats. A security vulnerability exists in HTMLDOC version v1.9.12, which stems from a heap buffer overflow found in writenode...

HTMLDOC 缓冲区错误漏洞

HTMLDOC is an open source program that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript and PDF formats. A security vulnerability exists in HTMLDOC v1.9.15, which stems from a heap buffer overflow found in writeheader...

USN-5438-2: HTMLDOC vulnerability

USN-5438-1 fixed a vulnerability in HTMLDOC. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that HTMLDOC did not properly manage memory under certain circumstances. If a user were tricked into opening a special...

Ubuntu 18.04 LTS / 20.04 LTS : HTMLDOC vulnerability (USN-5438-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5438-1 advisory. It was discovered that HTMLDOC did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted HTM...

Ubuntu: Security Advisory (USN-5438-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5438-1: HTMLDOC vulnerability

It was discovered that HTMLDOC did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted HTML file, a remote attacker could possibly use this issue to cause HTMLDOC to crash, resulting in a denial of service, or possibly execute arbitrary...

CVE-2021-23180

A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in fileextension,in file.c may lead to execute arbitrary code and denial of service...

CVE-2021-23165

A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdfprepareoutpages, in ps-pdf.cxx may lead to execute arbitrary code and denial of service...

MGASA-2022-0191 Updated htmldoc packages fix security vulnerability

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

Updated htmldoc packages fix security vulnerability

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

Heap-based Buffer Overflow

htmldoc is vulnerable to heap-based buffer overflow. The vulnerability exists in pdfwritenames in ps-pdf.cxx which may lead to arbitrary code execution and crash of an application...

Debian DLA-3004-1 : htmldoc - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3004 advisory. - There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an intege...

Debian: Security Advisory (DLA-3004-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3004-1] htmldoc security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3004-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb May 13, 2022 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...

CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...