rpm package
suse/htmldoc&distro=Subscription Management Tool 11 SP3
pkg:rpm/suse/htmldoc&distro=Subscription%20Management%20Tool%2011%20SP3
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0534 | — | < 1.8.27-170.4.9.1 | 1.8.27-170.4.9.1 | Feb 9, 2022 | A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault). | ||
| CVE-2021-43579 | — | < 1.8.27-170.4.6.1 | 1.8.27-170.4.6.1 | Nov 12, 2021 | A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file. | ||
| CVE-2021-40985 | — | < 1.8.27-170.4.3.1 | 1.8.27-170.4.3.1 | Nov 3, 2021 | A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp. | ||
| CVE-2021-20308 | — | < 1.8.27-170.4.9.1 | 1.8.27-170.4.9.1 | Apr 5, 2021 | Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181. | ||
| CVE-2019-19630 | — | < 1.8.27-170.4.9.1 | 1.8.27-170.4.9.1 | Dec 8, 2019 | HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx) via a crafted HTML document. |
- CVE-2022-0534Feb 9, 2022affected < 1.8.27-170.4.9.1fixed 1.8.27-170.4.9.1
A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault).
- CVE-2021-43579Nov 12, 2021affected < 1.8.27-170.4.6.1fixed 1.8.27-170.4.6.1
A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
- CVE-2021-40985Nov 3, 2021affected < 1.8.27-170.4.3.1fixed 1.8.27-170.4.3.1
A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp.
- CVE-2021-20308Apr 5, 2021affected < 1.8.27-170.4.9.1fixed 1.8.27-170.4.9.1
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
- CVE-2019-19630Dec 8, 2019affected < 1.8.27-170.4.9.1fixed 1.8.27-170.4.9.1
HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx) via a crafted HTML document.