Vulnerability Bulletins |
DSA-3309 tidy - security update |
|
System information |
|
| Affected software | Debian |
Description |
|
|
Fernando Muñoz discovered that invalid HTML input passed to tidy, anHTML syntax checker and reformatter, could trigger a buffer overflow.This could allow remote attackers to cause a denial of service (crash)or potentially execute arbitrary code. More info: https://www.debian.org/security/2015/dsa-3309 |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2015-5522 ,CVE-2015-5523 and DSA-3309. |
Version history |
||
| Version | Comments | Date |
| 1.0 | Advisory issued | 2015-07-21 |