CVE-2021-43579

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2021-43579
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-43579.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-43579
Downstream
Related
Published
2022-01-10T14:10:24Z
Modified
2025-10-15T13:27:14.429949Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A stack-based buffer overflow in imageloadbmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.

References

Affected packages

Git / github.com/michaelrsweet/htmldoc

Affected ranges

Type
GIT
Repo
https://github.com/michaelrsweet/htmldoc
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
27d08989a5a567155d506ac870ae7d8cc88fa58b

Affected versions

v1.*

v1.8.30
v1.9
v1.9.1
v1.9.10
v1.9.11
v1.9.12
v1.9.2
v1.9.3
v1.9.4
v1.9.5
v1.9.6
v1.9.7
v1.9.8
v1.9.9

Database specific

vanir_signatures

[
    {
        "digest": {
            "line_hashes": [
                "75444419729333380443052050884245593707",
                "52953918717421753729251150082072149909",
                "152886919627866368274563169380254036118",
                "198152111810803722130400047947566870774",
                "304108754680799189403228624423602673270",
                "157781778164509291172586315901535516558",
                "70669642789662802104105858184899219014",
                "168806463103019594349885454995563723793"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/michaelrsweet/htmldoc/commit/27d08989a5a567155d506ac870ae7d8cc88fa58b",
        "deprecated": false,
        "id": "CVE-2021-43579-3dcf72e3",
        "signature_version": "v1",
        "target": {
            "file": "htmldoc/image.cxx"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "length": 4321.0,
            "function_hash": "79376633260742945387846236869644820982"
        },
        "source": "https://github.com/michaelrsweet/htmldoc/commit/27d08989a5a567155d506ac870ae7d8cc88fa58b",
        "deprecated": false,
        "id": "CVE-2021-43579-8b2b6b1d",
        "signature_version": "v1",
        "target": {
            "function": "image_load_bmp",
            "file": "htmldoc/image.cxx"
        },
        "signature_type": "Function"
    }
]