{"id":"CVE-2021-43579","details":"A stack-based buffer overflow in image_load_bmp() in HTMLDOC \u003c= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.","modified":"2026-04-16T04:39:18.176651742Z","published":"2022-01-10T14:10:24.167Z","related":["SUSE-SU-2022:14877-1","openSUSE-SU-2024:11741-1"],"references":[{"type":"ADVISORY","url":"https://github.com/michaelrsweet/htmldoc/compare/v1.9.12...v1.9.13"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00022.html"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/commit/27d08989a5a567155d506ac870ae7d8cc88fa58b"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/issues/453"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/issues/456"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/michaelrsweet/htmldoc","events":[{"introduced":"0"},{"last_affected":"7ca2b30f9b3ae8f2ad429e222ebaa5be8764f409"},{"fixed":"27d08989a5a567155d506ac870ae7d8cc88fa58b"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.9.13"}]}}],"versions":["v1.8.30","v1.9","v1.9.1","v1.9.10","v1.9.11","v1.9.12","v1.9.13","v1.9.2","v1.9.3","v1.9.4","v1.9.5","v1.9.6","v1.9.7","v1.9.8","v1.9.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-43579.json","vanir_signatures_modified":"2026-04-11T18:45:39Z","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"vanir_signatures":[{"source":"https://github.com/michaelrsweet/htmldoc/commit/27d08989a5a567155d506ac870ae7d8cc88fa58b","target":{"file":"htmldoc/image.cxx"},"signature_version":"v1","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["75444419729333380443052050884245593707","52953918717421753729251150082072149909","152886919627866368274563169380254036118","198152111810803722130400047947566870774","304108754680799189403228624423602673270","157781778164509291172586315901535516558","70669642789662802104105858184899219014","168806463103019594349885454995563723793"]},"id":"CVE-2021-43579-3dcf72e3","deprecated":false},{"id":"CVE-2021-43579-8b2b6b1d","deprecated":false,"target":{"file":"htmldoc/image.cxx","function":"image_load_bmp"},"signature_version":"v1","digest":{"function_hash":"79376633260742945387846236869644820982","length":4321},"source":"https://github.com/michaelrsweet/htmldoc/commit/27d08989a5a567155d506ac870ae7d8cc88fa58b","signature_type":"Function"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}