HTMLDOC Project HTMLDOC 1.9.16

CPE Details

HTMLDOC Project HTMLDOC 1.9.16
htmldoc_project
htmldoc
1.9.16
2024-12-31
16h47 +00:00
2024-12-31
16h47 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:htmldoc_project:htmldoc:1.9.16:*:*:*:*:*:*:*

Informations

Vendor

htmldoc_project

Product

htmldoc

Version

1.9.16

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-45508 2024-08-31 22h00 +00:00 HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.
9.8
Critical
CVE-2022-27114 2022-05-09 14h52 +00:00 There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls malloc,'img->width' and 'img->height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer overflow/Address boundary error in the jpeg_read_scanlines function.
5.5
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.