{"affected":[{"ecosystem_specific":{"binaries":[{"htmldoc":"1.9.23-bp160.1.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"htmldoc","purl":"pkg:rpm/opensuse/htmldoc&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.9.23-bp160.1.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for htmldoc fixes the following issues:\n\nChanges in htmldoc:\n\n- CVE-2024-46478: Fixed buffer overflow when handling tabs through the parse_pre function (bsc#1232380).\n\n- version update to 1.9.23:\n  * Fixed a regression in list handling that caused a crash for empty list items\n    (Issue #553)\n  * Fixed a regression in the number of rendered table of contents levels in PDF\n    and PostScript output (Issue #554)\n\n- version update to 1.9.22:\n  * Added a \"--without-http\" configure option to build without CUPS HTTP/HTTPS\n    support (Issue #547)\n  * Updated HTTP/HTTPS support to work with both CUPS 2.x and 3.x.\n  * Updated the maximum image dimension to prevent integer overflow on 32-bit\n    platforms (Issue #550)\n  * Updated the HTML parser to correctly report the line number of errors in files\n    with more than 2^32-1 lines (Issue #551)\n  * Fixed a crash bug with certain markdown files (Issue #548)\n  * Fixed an unrestricted recursion bug when reading and formatting HTML (Issue #552)\n\n- version update to 1.9.21\n  * Updated HTTP/HTTPS connection error reporting to include the reason.\n  * Updated markdown parser.\n  * Updated the HTTP/HTTPS connection timeout to 5 minutes (Issue #541)\n  * Fixed a bug in the new PDF link code (Issue #536)\n  * Fixed a bug in the number-up code (Issue #539)\n  * Fixed a regression in leading whitespace handling (Issue #540)\n  * Fixed a bug in numbered heading support (Issue #543)\n  * Fixed a bug with setting the header on the first page (Issue #544)\n  * Fixed paths in the HTMLDOC snap (Issue #545)\n\n- update to 1.9.20:\n  * Fix a regression that caused spaces to disappear between some words\n  * Fix resolution of relative links within a document\n\n- includes changes from 1.9.19:\n  * Add support for ‘file’ method in links\n  * Update markdown support code to mmd\n  * Fix hyperlinks to subfolders\n  * Fix export of UTF-8 HTML\n  * Fix handling of whitespace-only nodes\n  * Fix case sensitivity of link targets\n","id":"openSUSE-SU-2026:20219-1","modified":"2026-02-13T16:07:48Z","published":"2026-02-13T16:07:48Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1232380"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-45508"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-46478"}],"related":["CVE-2024-45508","CVE-2024-46478"],"summary":"Security update for htmldoc","upstream":["CVE-2024-45508","CVE-2024-46478"]}