CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension(),in file.c may lead to execute arbitrary code and denial of service.

Published: **3 June 2021**

\[Unknown description\]

**Status**

Package

Release

Status

htmldoc  
Launchpad, Ubuntu, Debian

bionic

Not vulnerable  

focal

Released (1.9.7-1ubuntu0.2)  

groovy

Ignored (reached end-of-life)  

hirsute

Released (1.9.11-2ubuntu0.1)  

impish

Not vulnerable (1.9.11-4)  

trusty

Does not exist  

upstream

Released (1.9.11-4)  

xenial

Ignored (out of standard support)  

**References**

*   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23180
*   https://github.com/michaelrsweet/htmldoc/issues/418
*   https://github.com/michaelrsweet/htmldoc/commit/19c582fb32eac74b57e155cffbb529377a9e751a
*   https://ubuntu.com/security/notices/USN-5198-1
*   NVD
*   Launchpad
*   Debian

**Bugs**

*   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989437

Headline

CVE-2021-23180: CVE-2021-23180 | Ubuntu

CVE: Latest News