CVE-2024-46478Classic Buffer Overflow in Project Htmldoc

CWE-120Classic Buffer Overflow7 documents6 sources
Severity
9.8CRITICALNVD
OSV5.5
EPSS
0.3%
top 49.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Htmldoc Project Htmldoc
Timeline
PublishedOct 24
Latest updateJan 22

Description

HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

Debianhtmldoc_project/htmldoc< 1.9.18-3+1
Ubuntuhtmldoc_project/htmldoc< 1.8.27-8ubuntu1+esm4+5

Patches

Patch: github.com

🔴Vulnerability Details

4
OSV
HTMLDOC vulnerabilities2025-01-22
GHSA
GHSA-p9jh-f6vr-wxj3: HTMLDOC v12024-10-24
CVEList
CVE-2024-46478: HTMLDOC v12024-10-24
OSV
CVE-2024-46478: HTMLDOC v12024-10-24

📋Vendor Advisories

2
Ubuntu
HTMLDOC vulnerabilities2025-01-22
Debian
CVE-2024-46478: htmldoc - HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681...2024
CVE-2024-46478 — Classic Buffer Overflow | cvebase