FS#57828 - [podofo] CVE-2018-6352, CVE-2018-5308, CVE-2018-5309, CVE-2018-8001
Attached to Project:
Community Packages
Opened by test0 (test0) - Tuesday, 13 March 2018, 20:45 GMT
Last edited by Jelle van der Waa (jelly) - Thursday, 20 September 2018, 19:27 GMT
Opened by test0 (test0) - Tuesday, 13 March 2018, 20:45 GMT
Last edited by Jelle van der Waa (jelly) - Thursday, 20 September 2018, 19:27 GMT
|
Details
Description:
Name CVE-2018-6352 Description In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file. Name CVE-2018-5308 Description PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputStream::Write function (base/PdfOutputStream.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. Name CVE-2018-5309 Description In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function (base/PdfObjectStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Name CVE-2018-8001 Description In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. Upstream patches: https://sourceforge.net/p/podofo/code/commit_browser |
This task depends upon
Closed by Jelle van der Waa (jelly)
Thursday, 20 September 2018, 19:27 GMT
Reason for closing: Fixed
Additional comments about closing: Updated to 0.9.6-2
Thursday, 20 September 2018, 19:27 GMT
Reason for closing: Fixed
Additional comments about closing: Updated to 0.9.6-2