{"id":"CVE-2022-0137","details":"A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.","modified":"2026-05-18T21:18:26.665671Z","published":"2022-11-14T17:01:45.131Z","database_specific":{"cna_assigner":"fedora","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0137.json","cwe_ids":["CWE-119"]},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0137.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0137"},{"type":"REPORT","url":"https://github.com/michaelrsweet/htmldoc/issues/461"},{"type":"FIX","url":"https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b"},{"type":"PACKAGE","url":"https://github.com/michaelrsweet/htmldoc"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/michaelrsweet/htmldoc","events":[{"introduced":"0"},{"fixed":"71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b"}]}],"versions":["v1.9.14","v1.9.13","v1.9.12","v1.9.11","v1.9.10","v1.9.9","v1.9.8","v1.9.7","v1.9.6","v1.9.5","v1.9.4","v1.9.3","v1.9.2","v1.9.1","v1.9","v1.8.30"],"database_specific":{"vanir_signatures":[{"target":{"file":"htmldoc/image.cxx"},"id":"CVE-2022-0137-8d187efe","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["297472981316507945839698675243757011004","295268479066187838981750786933877699106","180283088309811897946039373889332944095","49970225574026909264440847956427795","162774849934666592158944790360900615107","88962972294982122508466774206613362823","7171333243352453904152759386472981638","51235282975610117606622240123798757686","128143176622412102198312061576007995858","234151772096908441394105233358954655232","322032723577332973482566653982131773070","338988096033338076431520303229355448142","327754122936077237617782704663087344531","22440375215000570540409524770429470750","249671219425354352373369169634643158321"]},"signature_version":"v1","signature_type":"Line","source":"https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b"},{"target":{"function":"image_load_gif","file":"htmldoc/image.cxx"},"id":"CVE-2022-0137-9d651ef5","deprecated":false,"digest":{"length":1959,"function_hash":"338219982382261317122099606761924980092"},"signature_version":"v1","signature_type":"Function","source":"https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b"},{"target":{"function":"image_set_mask","file":"htmldoc/image.cxx"},"id":"CVE-2022-0137-caf470eb","deprecated":false,"digest":{"length":1034,"function_hash":"105585053437073363818563317706400233635"},"signature_version":"v1","signature_type":"Function","source":"https://github.com/michaelrsweet/htmldoc/commit/71fe87878c9cbc3db429f5e5c70f28e4b3d96e3b"}],"vanir_signatures_modified":"2026-05-18T21:18:26Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-0137.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}