logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-5308

Description

PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputStream::Write function (base/PdfOutputStream.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.


Affected Package


OS OS Version Package Name Package Version
Debian 12 libpodofo 0.9.8+dfsg-2
Debian 11 libpodofo 0.9.7+dfsg-2
Debian 10 libpodofo 0.9.6+dfsg-5
Debian 999 libpodofo 0.9.8+dfsg-2

Related