DEBIAN-CVE-2009-3050
- Source
- https://security-tracker.debian.org/tracker/CVE-2009-3050
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2009-3050.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2009-3050
- Upstream
- Published
- 2009-09-02T17:30:01.313Z
- Modified
- 2025-11-19T02:04:29.231644Z
- Summary
- [none]
- Details
-
Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file with a long glyph name, but these vectors do not cross privilege boundaries.
- References
Affected packages
Debian:11 / htmldoc
Package
- Name
- htmldoc
- Purl
- pkg:deb/debian/htmldoc?arch=source
Debian:12 / htmldoc
Package
- Name
- htmldoc
- Purl
- pkg:deb/debian/htmldoc?arch=source
Debian:13 / htmldoc
Package
- Name
- htmldoc
- Purl
- pkg:deb/debian/htmldoc?arch=source
Debian:14 / htmldoc
Package
- Name
- htmldoc
- Purl
- pkg:deb/debian/htmldoc?arch=source