What the vulnerability does

01Description

A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension(),in file.c may lead to execute arbitrary code and denial of service.

Key dates

02Disclosure timeline

March 2, 2022 CVE published
August 3, 2024 Record updated