[CVE-2022-29536] In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered.
All stable and cleaned.
Thanks!
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=7a69d7abb7e2d4eb863dde1c092868d0df7cccbd commit 7a69d7abb7e2d4eb863dde1c092868d0df7cccbd Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-05-08 09:47:31 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-05-08 09:47:50 +0000 [ GLSA 202405-27 ] Epiphany: Buffer Overflow Bug: https://bugs.gentoo.org/839786 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202405-27.xml | 42 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+)
