CVE-2021-23158
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-23158
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-23158.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-23158
- Downstream
- Related
- Published
- 2022-03-16T15:15:10Z
- Modified
- 2025-10-21T06:02:01.137761Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.
- References
Affected packages
Git / github.com/michaelrsweet/htmldoc
Affected ranges
- Type
- GIT
- Repo
- https://github.com/michaelrsweet/htmldoc
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
v1.*
v1.8.30
v1.9
v1.9.1
v1.9.10
v1.9.11
v1.9.2
v1.9.3
v1.9.4
v1.9.5
v1.9.6
v1.9.7
v1.9.8
v1.9.9
Database specific
vanir_signatures
[
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-1f68d2fe",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "pspdf_prepare_page",
"file": "htmldoc/ps-pdf.cxx"
},
"signature_type": "Function",
"digest": {
"length": 2039.0,
"function_hash": "92322127114415870521607068119991088032"
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-335d3575",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "write_trailer",
"file": "htmldoc/ps-pdf.cxx"
},
"signature_type": "Function",
"digest": {
"length": 5590.0,
"function_hash": "319000601398196051361739018736045259971"
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-3a6adf34",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "image_load_jpeg",
"file": "htmldoc/image.cxx"
},
"signature_type": "Function",
"digest": {
"length": 1495.0,
"function_hash": "273838597093441093367409498317500445991"
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-637cccf5",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "htmldoc/file.c"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"24233290535264989810748690679705506210",
"100801203083552384439762334466782870457",
"286453315102484514880779508538999003133",
"325380916168297110754537502992714039597",
"142913364914498751147094645847081107842",
"2327086209042552317056688615316982611"
]
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-7b516114",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "file_rlookup",
"file": "htmldoc/file.c"
},
"signature_type": "Function",
"digest": {
"length": 231.0,
"function_hash": "253040243785350020620576354982529485400"
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-a05e793f",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "htmldoc/ps-pdf.cxx"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"174351675257079302674288344624817020623",
"101601067056068637150692630605931669980",
"280391808546796513492317466962874985719",
"284919528584911699891782557142563906198",
"316655231958914577262750320733714241484",
"259903975631848402735195579438303810430",
"252468788629462972060277174261718033030",
"132214329166457028830166077776864133259"
]
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-a3c2eb74",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "htmldoc/image.cxx"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"93662261141235397336793541586627527916",
"178372303592823082188525915246518540",
"182627793998545929107488062471140628976",
"49165471055202665109567153679255754669",
"212925988256507582288616706848766924941",
"319138341660598085657295740529178907075",
"216016017510746556388864693638497132619",
"248935907130947220320096162946614045664",
"150202415247926317426841370161245844037",
"37660859905881833385899212080022329555",
"108056819864349876478404953972008958215",
"231504663485709970494918551729485520299",
"124873979014350377780002559371087860547",
"324261901752826121729680621978216219693",
"204453826772054237783218990803904725774",
"88619547742534205724900377237136528247",
"216161839705182387489013709942683485324"
]
}
},
{
"source": "https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc",
"id": "CVE-2021-23158-c6a9284b",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "jpeg_error_handler",
"file": "htmldoc/image.cxx"
},
"signature_type": "Function",
"digest": {
"length": 44.0,
"function_hash": "257817902150553678093130567542449157059"
}
}
]