CVE-2022-0137: Buffer Overflow
First published: Mon Nov 14 2022(Updated: )
A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.
Credit: patrick@puiterwijk.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Htmldoc Project Htmldoc | <1.9.15 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-0137?
CVE-2022-0137 is a heap buffer overflow vulnerability in the image_set_mask function of HTMLDOC before version 1.9.15.
How severe is CVE-2022-0137?
CVE-2022-0137 has a severity score of 5.5 (high).
How does CVE-2022-0137 affect HTMLDOC?
CVE-2022-0137 affects HTMLDOC versions up to and excluding 1.9.15.
How can an attacker exploit CVE-2022-0137?
An attacker can exploit CVE-2022-0137 by triggering a heap buffer overflow in the image_set_mask function of HTMLDOC, allowing them to write outside the buffer boundaries.
Are there any fixes for CVE-2022-0137?
Yes, the vulnerability has been fixed in version 1.9.15 of HTMLDOC.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/htmldoc project
- canonical/htmldoc project htmldoc