An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input (rootname) can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact.
{ "binaries": [ { "binary_name": "leptonica-progs", "binary_version": "1.75.3-3ubuntu0.1~esm1" }, { "binary_name": "leptonica-progs-dbgsym", "binary_version": "1.75.3-3ubuntu0.1~esm1" }, { "binary_name": "liblept5", "binary_version": "1.75.3-3ubuntu0.1~esm1" }, { "binary_name": "liblept5-dbgsym", "binary_version": "1.75.3-3ubuntu0.1~esm1" }, { "binary_name": "libleptonica-dev", "binary_version": "1.75.3-3ubuntu0.1~esm1" } ], "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium" }