Описание
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 1.9.11-4 |
| esm-apps/bionic | released | 1.9.2-1ubuntu0.2+esm1 |
| esm-apps/focal | released | 1.9.7-1ubuntu0.3+esm1 |
| esm-apps/jammy | not-affected | 1.9.11-4 |
| esm-apps/noble | not-affected | 1.9.11-4 |
| esm-apps/xenial | released | 1.8.27-8ubuntu1.1+esm2 |
| esm-infra-legacy/trusty | released | 1.8.27-8ubuntu1+esm3 |
| focal | ignored | end of standard support, was needed |
| groovy | ignored | end of life |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_ ...
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.
Уязвимость компонента ps-pdf.cxx инструмента для конвертации документов HTMLDOC, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3