CVE-2018-7247 (NVD)

2018-02-19

An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input (rootname) can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact.

Products Leptonica
Type Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119)
First patch https://github.com/DanBloomberg/leptonica/commit/c1079bb8e77cdd426759e466729917ca37a3ed9f
Relevant file/s ./prog/htmlviewer.c (modified, +3, -3)
Links https://security.gentoo.org/glsa/202312-01

leptonica - Tree: c1079bb8e7

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: