Headline
CVE-2021-20308: 1946289 – (CVE-2021-20308) CVE-2021-20308 htmldoc: Integer overflow in image_load_gif()
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
Description Pedro Sampaio 2021-04-05 17:36:20 UTC
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
Upstream bug:
https://github.com/michaelrsweet/htmldoc/issues/423
Comment 1 Pedro Sampaio 2021-04-05 17:36:51 UTC
Created htmldoc tracking bugs for this issue:
Affects: epel-7 [bug 1946291] Affects: fedora-all [bug 1946290]
Comment 2 Product Security DevOps Team 2021-04-05 23:35:14 UTC
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.