| Errata ID | 310 |
|---|---|
| Date | 2015-09-09 |
| Source package | tidy |
| Fixed in version | 20091223cvs-1.18.201509021002 |
| Description | Multiple security vulnerabilities have been fixed in tidy: * Denial of service due to a Heap-based buffer overflow by the ParseValue function in lexer.c while parsing a href containing command character (CVE-2015-5522) * Denial of service due to a large memory allocation by the ParseValue function in lexer.c while parsing specially whitespaced href statements (CVE-2015-5523) |
| Additional notes | |
| CVE ID | CVE-2015-5522 CVE-2015-5523 |
| UCS Bug number | #39172 |
