Log

AVG-2027 edited at 02 Jun 2021 19:28:07
Ticket
+ 71108
AVG-2027 edited at 02 Jun 2021 19:26:50
Severity
- Unknown
+ Medium
CVE-2018-10195 edited at 02 Jun 2021 19:26:50
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ lrzsz before version 0.12.21~rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a size_t to wrap around.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1572058
+ https://src.fedoraproject.org/rpms/lrzsz/blob/rawhide/f/lrzsz-0.12.20.patch
Notes
AVG-2027 created at 02 Jun 2021 19:25:01
Packages
+ lrzsz
Issues
+ CVE-2018-10195
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 0.12.20-7
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
CVE-2018-10195 created at 02 Jun 2021 19:25:01
CVE-2021-33203 edited at 02 Jun 2021 14:19:18
Type
- Information disclosure
+ Directory traversal
CVE-2021-23180 edited at 02 Jun 2021 11:15:38
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A security issue was found in htmldoc before version 1.9.12. A null pointer dereference in file_extension() in file.c may lead to denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1967041
+ https://github.com/michaelrsweet/htmldoc/issues/418
+ https://github.com/michaelrsweet/htmldoc/commit/19c582fb32eac74b57e155cffbb529377a9e751a
AVG-1773 edited at 02 Jun 2021 11:14:30
Issues
CVE-2021-20308
CVE-2021-23158
CVE-2021-23165
+ CVE-2021-23180
CVE-2021-23191
CVE-2021-23206
CVE-2021-26252
CVE-2021-26259
CVE-2021-26948
CVE-2021-23180 created at 02 Jun 2021 11:14:30
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
CVE-2021-26259 edited at 02 Jun 2021 11:10:10
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was found in htmldoc before version 1.9.12. A heap buffer overflow in render_table_row() in ps-pdf.cxx may lead to arbitrary code execution and denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1967034
+ https://github.com/michaelrsweet/htmldoc/issues/417
+ https://github.com/michaelrsweet/htmldoc/commit/0ddab26a542c74770317b622e985c52430092ba5
AVG-1773 edited at 02 Jun 2021 11:09:08
Issues
CVE-2021-20308
CVE-2021-23158
CVE-2021-23165
CVE-2021-23191
CVE-2021-23206
CVE-2021-26252
+ CVE-2021-26259
CVE-2021-26948
CVE-2021-26259 created at 02 Jun 2021 11:09:08
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
CVE-2021-23206 edited at 02 Jun 2021 11:08:33
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was found in htmldoc before version 1.9.12. A stack buffer overflow in parse_table() in ps-pdf.cxx may lead to arbitrary code execution and denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1967028
+ https://github.com/michaelrsweet/htmldoc/issues/416
+ https://github.com/michaelrsweet/htmldoc/commit/ba61a3ece382389ae4482c7027af8b32e8ab4cc8
AVG-1773 edited at 02 Jun 2021 11:07:32
Issues
CVE-2021-20308
CVE-2021-23158
CVE-2021-23165
CVE-2021-23191
+ CVE-2021-23206
CVE-2021-26252
CVE-2021-26948
CVE-2021-23206 created at 02 Jun 2021 11:07:32
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes