Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-0137

A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.

Published

2022-11-14T18:15:15.903

Last Modified

2024-11-21T06:37:58.840

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-119
Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	htmldoc_project	htmldoc	< 1.9.15	Yes

References

https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b Patch, Third Party Advisory ([email protected])
https://github.com/michaelrsweet/htmldoc/issues/461 Exploit, Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/michaelrsweet/htmldoc/issues/461 Exploit, Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)