CVE-2022-29536

Name
CVE-2022-29536
Description
In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1106
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5K5UPNHVWXDPSMBNSB2645MD2N5CXQS/
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GLLDMY4JYDZTMZSCPSY23K5YW3SQYUR6/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N7YWVIUGFRA6GOE3QAPSJJ6EL3DJG5NX/
Third Party Advisory https://www.debian.org/security/2022/dsa-5208
Mailing List https://lists.debian.org/debian-lts-announce/2022/08/msg00006.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U5K5UPNHVWXDPSMBNSB2645MD2N5CXQS/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GLLDMY4JYDZTMZSCPSY23K5YW3SQYUR6/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N7YWVIUGFRA6GOE3QAPSJJ6EL3DJG5NX/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:gnome:epiphany:*:*:*:*:*:*:*:* epiphany >= 42.0 < 42.2
cpe:2.3:a:gnome:epiphany:*:*:*:*:*:*:*:* epiphany >= None < 41.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
epiphany 3.15-community 41.3-r0 Rasmus Thomsen <oss@cogitri.dev> possibly vulnerable