{"id":"CVE-2024-45508","details":"HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.","modified":"2026-04-16T04:34:51.715544567Z","published":"2024-09-01T22:15:13.987Z","related":["openSUSE-SU-2024:0303-1","openSUSE-SU-2024:0304-1","openSUSE-SU-2024:14308-1","openSUSE-SU-2026:20219-1"],"references":[{"type":"ADVISORY","url":"https://github.com/michaelrsweet/htmldoc/blob/2d5b2ab9ddbf2aee2209010cebc11efdd1cab6e2/CHANGES.md"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/commit/2d5b2ab9ddbf2aee2209010cebc11efdd1cab6e2"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/issues/528"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/michaelrsweet/htmldoc","events":[{"introduced":"0"},{"fixed":"48f878925cd57575c7906686351b67ece10571f3"},{"fixed":"2d5b2ab9ddbf2aee2209010cebc11efdd1cab6e2"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.9.19"}]}}],"versions":["v1.8.30","v1.9","v1.9.1","v1.9.10","v1.9.11","v1.9.12","v1.9.13","v1.9.14","v1.9.15","v1.9.16","v1.9.17","v1.9.18","v1.9.2","v1.9.3","v1.9.4","v1.9.5","v1.9.6","v1.9.7","v1.9.8","v1.9.9"],"database_specific":{"vanir_signatures_modified":"2026-04-12T09:10:30Z","vanir_signatures":[{"deprecated":false,"digest":{"line_hashes":["68782867560060017259724923564816750929","160264590626436307499930712334009916347","300369049026148807027730437905144355335","27365475782180572492597347525659984954"],"threshold":0.9},"signature_type":"Line","target":{"file":"htmldoc/ps-pdf.cxx"},"source":"https://github.com/michaelrsweet/htmldoc/commit/2d5b2ab9ddbf2aee2209010cebc11efdd1cab6e2","id":"CVE-2024-45508-01e0d9cc","signature_version":"v1"},{"deprecated":false,"digest":{"length":14220,"function_hash":"441327441782029693950174389595358123"},"signature_type":"Function","target":{"function":"parse_paragraph","file":"htmldoc/ps-pdf.cxx"},"source":"https://github.com/michaelrsweet/htmldoc/commit/2d5b2ab9ddbf2aee2209010cebc11efdd1cab6e2","id":"CVE-2024-45508-231704bb","signature_version":"v1"}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-45508.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}