SUSE Package Hub - openSUSE-2024-303

Update Info

openSUSE-2024-303

Security update for htmldoc

Type: security

Severity: moderate

Issued: 2024-09-16

Description:

This update for htmldoc fixes the following issues:

- CVE-2024-45508: Fixed an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node [boo#1230022].

References

CVE: CVE-2024-45508
Bugzilla: 1230022 VUL-0: CVE-2024-45508: htmldoc: HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.

Packages

htmldoc-1.9.16-bp156.3.3.1