logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-5295

Description

In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::ParseStream function (base/PdfXRefStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file.


Affected Package


OS OS Version Package Name Package Version
Debian 12 libpodofo 0.9.8+dfsg-2
Debian 11 libpodofo 0.9.7+dfsg-2
Debian 10 libpodofo 0.9.6+dfsg-5
Debian 999 libpodofo 0.9.8+dfsg-2

Related