htmldoc: stack-based buffer overflow [LWN.net]

Package(s):

htmldoc

CVE #(s):

Created:

September 1, 2009

Updated:

September 2, 2009

Description:

From the Red Hat bugzilla: A stack-based buffer overflow by processing user-supplied input was found in HTMLDOC's routine, used to set the result page output size for custom page sizes. A remote attacker could provide a specially-crafted HTML file, which once opened by an unsuspecting user, would lead to denial of service (htmldoc crash).

Alerts:

Fedora	FEDORA-2009-8611	htmldoc	2009-08-15
Fedora	FEDORA-2009-8595	htmldoc	2009-08-15