Htmldocproject Htmldoc
By the Year
In 2024 there have been 0 vulnerabilities in Htmldocproject Htmldoc . Last year Htmldoc had 2 security vulnerabilities published. Right now, Htmldoc is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 2 | 7.80 |
| 2022 | 18 | 7.22 |
| 2021 | 2 | 7.65 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 7.80 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Htmldoc vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Htmldocproject Htmldoc Security Vulnerabilities
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly
CVE-2021-34119
7.8 - High
- July 18, 2023
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.
Memory Corruption
An Out of Bounds flaw was discovered in htmodoc 1.9.12 in function parse_tree() in toc.cxx
CVE-2021-34121
7.8 - High
- July 18, 2023
An Out of Bounds flaw was discovered in htmodoc 1.9.12 in function parse_tree() in toc.cxx, this possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution.
Out-of-bounds Read
A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15
CVE-2022-0137
5.5 - Medium
- November 14, 2022
A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.
Memory Corruption
Buffer overflow vulnerability in write_node in htmldoc through 1.9.11
CVE-2021-33235
5.5 - Medium
- August 15, 2022
Buffer overflow vulnerability in write_node in htmldoc through 1.9.11 allows attackers to cause a denial of service via htmldoc/htmldoc/html.cxx:588.
Memory Corruption
Buffer Overflow vulnerability in write_header in htmldoc through 1.9.11
CVE-2021-33236
5.5 - Medium
- August 15, 2022
Buffer Overflow vulnerability in write_header in htmldoc through 1.9.11 allows attackers to casue a denial of service via /htmldoc/htmldoc/html.cxx:273.
Memory Corruption
HTMLDoc v1.9.15 was discovered to contain a heap overflow
CVE-2022-34033
7.5 - High
- July 18, 2022
HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_header) /htmldoc/htmldoc/html.cxx:273.
Memory Corruption
HTMLDoc v1.9.12 and below was discovered to contain a heap overflow
CVE-2022-34035
7.5 - High
- July 18, 2022
HTMLDoc v1.9.12 and below was discovered to contain a heap overflow via e_node htmldoc/htmldoc/html.cxx:588.
Memory Corruption
There is a vulnerability in htmldoc 1.9.16
CVE-2022-27114
5.5 - Medium
- May 09, 2022
There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls malloc,'img->width' and 'img->height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer overflow/Address boundary error in the jpeg_read_scanlines function.
Integer Overflow or Wraparound
A flaw was found in htmldoc commit 31f7804
CVE-2022-28085
7.8 - High
- April 27, 2022
A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and Denial of Service (DoS).
Memory Corruption
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function
CVE-2022-24191
5.5 - Medium
- April 04, 2022
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer arbitrarily pointing to heap memory and resulting in a buffer overflow.
Infinite Loop
A flaw was found in htmldoc before v1.9.12
CVE-2021-23165
9.8 - Critical
- March 16, 2022
A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
Memory Corruption
A flaw was found in htmldoc in v1.9.12
CVE-2021-23158
9.8 - Critical
- March 16, 2022
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.
Double-free
A flaw was found in htmldoc in v1.9.12
CVE-2021-26259
7.8 - High
- March 03, 2022
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in render_table_row(),in ps-pdf.cxx may lead to arbitrary code execution and denial of service.
Memory Corruption
Null pointer dereference in the htmldoc v1.9.11 and before may allow attackers to execute arbitrary code
CVE-2021-26948
7.8 - High
- March 03, 2022
Null pointer dereference in the htmldoc v1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service via a crafted html file.
NULL Pointer Dereference
A flaw was found in htmldoc in v1.9.12 and before
CVE-2021-23180
7.8 - High
- March 02, 2022
A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension(),in file.c may lead to execute arbitrary code and denial of service.
NULL Pointer Dereference
A security issue was found in htmldoc v1.9.12 and before
CVE-2021-23191
7.8 - High
- March 02, 2022
A security issue was found in htmldoc v1.9.12 and before. A NULL pointer dereference in the function image_load_jpeg() in image.cxx may result in denial of service.
NULL Pointer Dereference
A flaw was found in htmldoc in v1.9.12 and prior
CVE-2021-23206
7.8 - High
- March 02, 2022
A flaw was found in htmldoc in v1.9.12 and prior. A stack buffer overflow in parse_table() in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
Memory Corruption
A flaw was found in htmldoc in v1.9.12
CVE-2021-26252
7.8 - High
- February 24, 2022
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in pspdf_prepare_page(),in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
Memory Corruption
A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file
CVE-2022-0534
5.5 - Medium
- February 09, 2022
A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault).
Out-of-bounds Read
A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
CVE-2021-43579
7.8 - High
- January 10, 2022
A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
Memory Corruption
A stack-based buffer under-read in htmldoc before 1.9.12
CVE-2021-40985
5.5 - Medium
- November 03, 2021
A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp.
Out-of-bounds Read
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code
CVE-2021-20308
9.8 - Critical
- April 05, 2021
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
Integer Overflow or Wraparound
HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx)
CVE-2019-19630
7.8 - High
- December 08, 2019
HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx) via a crafted HTML document.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Fedora Project Fedora or by Htmldocproject? Click the Watch button to subscribe.
