Unrated severityNVD Advisory· Published Apr 5, 2021· Updated Aug 3, 2024

CVE-2021-20308

Description

Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.

Affected products

htmldoc/htmldocdescription
osv-coords6 versions
pkg:rpm/opensuse/htmldoc&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/htmldoc&distro=openSUSE%20Tumbleweed pkg:rpm/suse/htmldoc&distro=Subscription%20Management%20Tool%2011%20SP3 pkg:rpm/suse/htmldoc&distro=SUSE%20Package%20Hub%2012%20SP1 pkg:rpm/suse/htmldoc&distro=SUSE%20Package%20Hub%2015%20SP1 pkg:rpm/suse/htmldoc&distro=SUSE%20Package%20Hub%2015%20SP2
< 1.9.12-lp152.4.3.1+ 5 more
- (no CPE)range: < 1.9.12-lp152.4.3.1
- (no CPE)range: < 1.9.12-1.2
- (no CPE)range: < 1.8.27-170.4.9.1
- (no CPE)range: < 1.8.28-6.1
- (no CPE)range: < 1.9.12-bp151.4.3.1
- (no CPE)range: < 1.9.12-bp152.4.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
github.com/michaelrsweet/htmldoc/issues/423mitrex_refsource_MISC
lists.debian.org/debian-lts-announce/2021/07/msg00000.htmlmitremailing-listx_refsource_MLIST

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000