htmldoc is vulnerable to denial of service. The vulnerability exists due to a heap buffer overflow in pspdf_prepare_outpages()
, in ps-pdf.cxx
.
bugzilla.redhat.com/show_bug.cgi?id=1967014
github.com/michaelrsweet/htmldoc/commit/6e8a95561988500b5b5ae4861b3b0cbf4fba517f
github.com/michaelrsweet/htmldoc/commit/6e8a95561988500b5b5ae4861b3b0cbf4fba517f.patch
github.com/michaelrsweet/htmldoc/issues/413
security-tracker.debian.org/tracker/CVE-2021-23165