VDB

GCVE-110-MAGEIA-2022-33

GCVE-110-MAGEIA-2022-33
Advisory Published
Vulnetix · Advisory published January 25, 2022
The updated packages fix a crash when clicking the button "Generate" and a security vulnerability: A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file. (CVE-2021-43579)

Affected Products

VendorProductVersionsPlatforms
Mageiavlc0 (affected), 3.0.17-1.mga8 (unaffected), 0 (affected), 3.0.17-1.mga8.tainted (unaffected)
Mageiahtmldoc0 (affected), 1.9.14-1.mga8 (unaffected), 0 (affected), 1.9.14-1.mga8 (unaffected)

Browse GCVE Records

73,442 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›