Headline
Ubuntu Security Notice USN-5438-1
Ubuntu Security Notice 5438-1 - It was discovered that HTMLDOC did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted HTML file, a remote attacker could possibly use this issue to cause HTMLDOC to crash, resulting in a denial of service, or possibly execute arbitrary code.
==========================================================================Ubuntu Security Notice USN-5438-1May 23, 2022htmldoc vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTS- Ubuntu 18.04 LTSSummary:HTMLDOC could be made to crash or run programs if it received speciallycrafted HTML files.Software Description:- htmldoc: HTML processor that generates indexed HTML, PS, and PDFDetails:It was discovered that HTMLDOC did not properly manage memory under certaincircumstances. If a user were tricked into opening a specially crafted HTMLfile, a remote attacker could possibly use this issue to cause HTMLDOC tocrash, resulting in a denial of service, or possibly execute arbitrary code.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:htmldoc 1.9.7-1ubuntu0.3htmldoc-common 1.9.7-1ubuntu0.3Ubuntu 18.04 LTS:htmldoc 1.9.2-1ubuntu0.2htmldoc-common 1.9.2-1ubuntu0.2In general, a standard system update will make all the necessary changes.References:https://ubuntu.com/security/notices/USN-5438-1CVE-2021-23165Package Information:https://launchpad.net/ubuntu/+source/htmldoc/1.9.7-1ubuntu0.3https://launchpad.net/ubuntu/+source/htmldoc/1.9.2-1ubuntu0.2
Related news
Gentoo Linux Security Advisory 202405-07
Gentoo Linux Security Advisory 202405-7 - Multiple vulnerabilities have been discovered in HTMLDOC, the worst of which can lead to arbitrary code execution. Versions greater than or equal to 1.9.16 are affected.