Signal Handler Use of a Non-reentrant Function

CVE-2021-26948

High

7.8/10

Summary

Null pointer dereference in the htmldoc v1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service via a crafted html file.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-479 - Signal Handler Use of a Non-reentrant Function

The program defines a signal handler that calls a non-reentrant function.

References

Advisory Timeline

Published Mar 03, 2022

Signal Handler Use of a Non-reentrant Function

CVE-2021-26948

Summary

CWE-479 - Signal Handler Use of a Non-reentrant Function

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS