[Git][security-tracker-team/security-tracker][master] Add CVE-2024-46478/htmldoc

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 25 21:37:52 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
28c44252 by Salvatore Bonaccorso at 2024-10-25T22:37:28+02:00
Add CVE-2024-46478/htmldoc

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -393,7 +393,10 @@ CVE-2024-46995 (baserCMS is a website development framework. Versions prior to 5
 CVE-2024-46994 (baserCMS is a website development framework. Versions prior to 5.1.2 h ...)
 	NOT-FOR-US: baserCMS
 CVE-2024-46478 (HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pd ...)
-	TODO: check
+	- htmldoc <unfixed>
+	[bookworm] - htmldoc <no-dsa> (Minor issue)
+	NOTE: https://github.com/michaelrsweet/htmldoc/issues/529
+	NOTE: https://github.com/michaelrsweet/htmldoc/commit/683bec548e642cf4a17e003fb34f6bbaf2d27b98
 CVE-2024-45259 (An issue was discovered on certain GL-iNet devices, including MT6000,  ...)
 	NOT-FOR-US: GL-iNet devices
 CVE-2024-45242 (EnGenius ENH1350EXT A8J-ENH1350EXT devices through 3.9.3.2_c1.9.51 all ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28c44252e7ef34b1f99dbbd6a6c5b4908acf2333

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28c44252e7ef34b1f99dbbd6a6c5b4908acf2333
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241025/b433aa0c/attachment.htm>


More information about the debian-security-tracker-commits mailing list