Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls malloc,'img->width' and 'img->height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer overflow/Address boundary error in the jpeg_read_scanlines function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HTMLDOC 输入验证错误漏洞
Vulnerability Description
HTMLDOC是一款能够将HTML和Markdown文件转换为EPUB、索引HTML、PostScript和PDF等格式文件的开源程序。 HTMLDOC 1.9.16 版本存在安全漏洞,该漏洞源于image_load_jpeg方法在调用 malloc 时,img->width 和 img->height 它们大到足以导致整数溢出。 因此,malloc 函数可能会返回小于预期大小的堆块,并且会导致 jpeg_read_scanlines 函数中的缓冲区溢出/地址边界错误。
CVSS Information
N/A
Vulnerability Type
N/A