A stack-based buffer overflow in imageloadbmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
{ "availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "htmldoc", "binary_version": "1.8.27-8ubuntu1+esm3" }, { "binary_name": "htmldoc-common", "binary_version": "1.8.27-8ubuntu1+esm3" }, { "binary_name": "htmldoc-dbgsym", "binary_version": "1.8.27-8ubuntu1+esm3" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "htmldoc", "binary_version": "1.8.27-8ubuntu1.1+esm2" }, { "binary_name": "htmldoc-common", "binary_version": "1.8.27-8ubuntu1.1+esm2" }, { "binary_name": "htmldoc-dbgsym", "binary_version": "1.8.27-8ubuntu1.1+esm2" } ] }