PhilipHazel/SDoP

Releases4

Frequency1 week 6 days

Last Release about 3 years ago

SDoP is a typesetter that turns Simple Docbook XML into PostScript page images.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-41881 ↗	Jul 29, 2024Monday, 29 July 2024, 09:15	8.8 HIGH	—
SDoP versions prior to 1.11 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted XML file, arbitrary code may be executed on the user's environment.