CVE-2022-28085

michaelrsweet/htmldoc

on github

Published

April 27, 2022

Severity

CVSS v3:

7.8 HIGH

CVSS v2:

6.8 MEDIUM

Description

A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and Denial of Service (DoS).

References

https://github.com/michaelrsweet/htmldoc/issues/480
https://github.com/michaelrsweet/htmldoc/commit/46c8ec2b9bccb8ccabff52d998c5eee77a228348

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:htmldoc_project:htmldoc::::::::	n/a	2022-03-24	*

External Links

NVD - CVE-2022-28085