CVE-2021-23180
N/A
N/A
Summary
A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension(),in file.c may lead to execute arbitrary code and denial of service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | htmldoc | Fixed in htmldoc v1.9.12 and above. | affected |
Weaknesses
- CWE-476: CWE-476 - NULL Pointer Dereference, CWE-400 - Uncontrolled Resource Consumption
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/michaelrsweet/htmldoc/issues/418
- https://bugzilla.redhat.com/show_bug.cgi?id=1967041
- https://ubuntu.com/security/CVE-2021-23180
- https://github.com/michaelrsweet/htmldoc/commit/19c582fb32eac74b57e155cffbb529377a9e751a
References
- https://github.com/michaelrsweet/htmldoc/issues/418
- https://bugzilla.redhat.com/show_bug.cgi?id=1967041
- https://ubuntu.com/security/CVE-2021-23180
- https://github.com/michaelrsweet/htmldoc/commit/19c582fb32eac74b57e155cffbb529377a9e751a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.