A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to imageloadbmp.
{ "vanir_signatures": [ { "source": "https://github.com/michaelrsweet/htmldoc/commit/f12b9666e582a8e7b70f11b28e5ffc49ad625d43", "deprecated": false, "signature_version": "v1", "signature_type": "Function", "id": "CVE-2021-40985-5711492f", "digest": { "function_hash": "235288188373485764838552579787458681969", "length": 4196.0 }, "target": { "file": "htmldoc/image.cxx", "function": "image_load_bmp" } }, { "source": "https://github.com/michaelrsweet/htmldoc/commit/f12b9666e582a8e7b70f11b28e5ffc49ad625d43", "deprecated": false, "signature_version": "v1", "signature_type": "Line", "id": "CVE-2021-40985-cf967adb", "digest": { "line_hashes": [ "257141514835789531580371397587660108400", "283175293527098262048020954610039308665", "183847361107666746679610264155092227619", "70669642789662802104105858184899219014", "168806463103019594349885454995563723793", "78063532877380292851353647147807482642", "23937941108991224855156320071632840118", "79038696367307572280894279184605094182", "252027508351634483800230415675881158328", "111665357732966115136306573663186122285", "269559370259603800226433636181528946091" ], "threshold": 0.9 }, "target": { "file": "htmldoc/image.cxx" } } ] }