MDVSA-2009:231-1
- Package name
- htmldoc
- Date
- 2009-12-07
- Advisory ID
- MDVSA-2009:231-1
- Affected versions
- 2008.0 i586 , 2008.0 x86_64
Problem description
A security vulnerability has been identified and fixed in htmldoc:
Buffer overflow in the set_page_size function in util.cxx in HTMLDOC
1.8.27 and earlier allows context-dependent attackers to execute
arbitrary code via a long MEDIA SIZE comment. NOTE: it was later
reported that there were additional vectors in htmllib.cxx and
ps-pdf.cxx using an AFM font file with a long glyph name, but these
vectors do not cross privilege boundaries (CVE-2009-3050).
This update provides a solution to this vulnerability.
Update:
Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers
Updated packages
2008.0 i586
c74c08a59ebd8d729e75596cfd2dd3c1 2008.0/i586/htmldoc-1.8.27-1.1mdv2008.0.i586.rpm 97ebe42e77c0a5bf3610d38274a358b7 2008.0/i586/htmldoc-nogui-1.8.27-1.1mdv2008.0.i586.rpm e65766dc51b5bedf47c4ef819c89100d 2008.0/SRPMS/htmldoc-1.8.27-1.1mdv2008.0.src.rpm
2008.0 x86_64
0e263a43524a4a32a66be6e1a9e35aad 2008.0/x86_64/htmldoc-1.8.27-1.1mdv2008.0.x86_64.rpm 58ee4dd5137fa01aac91543f06f7e4ee 2008.0/x86_64/htmldoc-nogui-1.8.27-1.1mdv2008.0.x86_64.rpm e65766dc51b5bedf47c4ef819c89100d 2008.0/SRPMS/htmldoc-1.8.27-1.1mdv2008.0.src.rpm