Note:
This project will be discontinued after December 13, 2021. [more]
2018-02-19
An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input (rootname) can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact.
Products | Leptonica |
Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
First patch |
https://github.com/DanBloomberg/leptonica/commit/c1079bb8e77cdd426759e466729917ca37a3ed9f |
Relevant file/s | ./prog/htmlviewer.c (modified, +3, -3) |
Links | https://security.gentoo.org/glsa/202312-01 |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: