{"id":"MGASA-2025-0097","summary":"Updated man2html packages fix security vulnerability","details":"In man2html 1.6g, a specific string being read in from a file will\noverwrite the size parameter in the top chunk of the heap. This at least\ncauses the program to segmentation abort if the heap size parameter\nisn't aligned correctly. In versions before GLIBC version 2.29 and\nif aligned correctly, it allows arbitrary writes anywhere in the program's\nmemory.\n","modified":"2026-03-25T17:45:07.178904Z","published":"2025-03-15T01:40:42Z","related":["CVE-2021-40647"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0097.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34072"},{"type":"REPORT","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BAS4Z6KUDJQV22DP5BTQX56WVFT3FF32/"}],"affected":[{"package":{"name":"man2html","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/man2html?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.6-6.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0097.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}