[Bugs] [Bug 13540] New: [CVE 21] htmldoc 1.9.9 CVEs found

bugzilla bugzilla на rosalinux.ru
Ср Авг 23 23:20:41 MSK 2023 

https://bugzilla.rosalinux.ru/show_bug.cgi?id=13540

          Platform: 2021.1
            Bug ID: 13540
           Summary: [CVE 21] htmldoc 1.9.9  CVEs found
    Classification: ROSA-based products
           Product: ROSA Fresh
           Version: All
          Hardware: All
               URL: CVE-2021-23165, CVE-2021-40985, CVE-2022-0137,
                    CVE-2022-24191, CVE-2022-28085,
                OS: Linux
            Status: CONFIRMED
          Severity: normal
          Priority: Normal
         Component: System (kernel, glibc, systemd, bash, PAM...)
          Assignee: bugs на lists.rosalinux.ru
          Reporter: y.tumanov на rosalinux.ru
        QA Contact: bugs на lists.rosalinux.ru
                CC: e.kosachev на rosalinux.ru, s.matveev на rosalinux.ru,
                    y.tumanov на rosalinux.ru
  Target Milestone: ---
             Flags: secteam_verified?

Please patch CVEs for package htmldoc version 1.9.9

INFO (CVEs are): htmldoc 1.9.9
 cves found
CVE-2021-23165
Desc: A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in
pspdf_prepare_outpages(), in ps-pdf.cxx may lead to execute arbitrary code and
denial of service.
Link: https://nvd.nist.gov/vuln/detail/CVE-2021-23165
Severity: CRITICAL
CVE-2021-40985
Desc: A stack-based buffer under-read in htmldoc before 1.9.12, allows
attackers to cause a denial of service via a crafted BMP image to
image_load_bmp.
Link: https://nvd.nist.gov/vuln/detail/CVE-2021-40985
Severity: MEDIUM
CVE-2022-0137
Desc: A heap buffer overflow in image_set_mask function of HTMLDOC before
1.9.15 allows an attacker to write outside the buffer boundaries.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-0137
Severity: MEDIUM
CVE-2022-24191
Desc: In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead
to a pointer arbitrarily pointing to heap memory and resulting in a buffer
overflow.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-24191
Severity: MEDIUM
CVE-2022-28085
Desc: A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the
function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and
Denial of Service (DoS).
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-28085
Severity: HIGH

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
----------- следущая часть -----------
Вложение в формате HTML было извлечено…
URL: <http://lists.rosalinux.ru/pipermail/bugs/attachments/20230823/c47d19b1/attachment.html>

Подробная информация о списке рассылки Bugs