Package: htmldoc; Maintainer for htmldoc is Håvard Flaget Aasen <haavard_aasen@yahoo.no>; Source for htmldoc is src:htmldoc (PTS, buildd, popcon).
Reported by: Wooseok Kang <kangwoosuk1@gmail.com>
Date: Mon, 8 Mar 2021 07:09:01 UTC
Severity: normal
Tags: fixed-upstream, security, upstream
Found in version htmldoc/1.9.11-2
Forwarded to https://github.com/michaelrsweet/htmldoc/issues/423
Reply or subscribe to this bug.
View this report as an mbox folder, status mbox, maintainer mbox
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
[htmldoc-poc.gif (image/gif, attachment)]
[htmldoc-poc.html (text/plain, attachment)]
Added tag(s) upstream.
Request was from Håvard Flaget Aasen <haavard_aasen@yahoo.no>
to control@bugs.debian.org
.
(Mon, 05 Apr 2021 11:03:03 GMT) (full text, mbox, link).
Set Bug forwarded-to-address to 'https://github.com/michaelrsweet/htmldoc/issues/423'.
Request was from Håvard Flaget Aasen <haavard_aasen@yahoo.no>
to control@bugs.debian.org
.
(Mon, 05 Apr 2021 11:03:03 GMT) (full text, mbox, link).
Added tag(s) fixed-upstream.
Request was from debian-bts-link@lists.debian.org
to control@bugs.debian.org
.
(Thu, 08 Apr 2021 17:33:14 GMT) (full text, mbox, link).
Added tag(s) security.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org
.
(Sun, 09 May 2021 18:57:05 GMT) (full text, mbox, link).
Changed Bug title to 'htmldoc: CVE-2021-20308: buffer-overflow caused by integer-overflow in image_load_gif()' from 'htmldoc: buffer-overflow caused by integer-overflow in image_load_gif()'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org
.
(Sun, 09 May 2021 18:57:05 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.