Package name
htmldoc
Date
2009-12-07
Advisory ID
MDVSA-2009:231-1
Affected versions
2008.0 i586 , 2008.0 x86_64

Problem description

A security vulnerability has been identified and fixed in htmldoc:

Buffer overflow in the set_page_size function in util.cxx in HTMLDOC
1.8.27 and earlier allows context-dependent attackers to execute
arbitrary code via a long MEDIA SIZE comment. NOTE: it was later
reported that there were additional vectors in htmllib.cxx and
ps-pdf.cxx using an AFM font file with a long glyph name, but these
vectors do not cross privilege boundaries (CVE-2009-3050).

This update provides a solution to this vulnerability.

Update:

Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers

Updated packages

2008.0 i586

 c74c08a59ebd8d729e75596cfd2dd3c1  2008.0/i586/htmldoc-1.8.27-1.1mdv2008.0.i586.rpm
 97ebe42e77c0a5bf3610d38274a358b7  2008.0/i586/htmldoc-nogui-1.8.27-1.1mdv2008.0.i586.rpm 
 e65766dc51b5bedf47c4ef819c89100d  2008.0/SRPMS/htmldoc-1.8.27-1.1mdv2008.0.src.rpm

2008.0 x86_64

 0e263a43524a4a32a66be6e1a9e35aad  2008.0/x86_64/htmldoc-1.8.27-1.1mdv2008.0.x86_64.rpm
 58ee4dd5137fa01aac91543f06f7e4ee  2008.0/x86_64/htmldoc-nogui-1.8.27-1.1mdv2008.0.x86_64.rpm 
 e65766dc51b5bedf47c4ef819c89100d  2008.0/SRPMS/htmldoc-1.8.27-1.1mdv2008.0.src.rpm

References