logo
DATABASE RESOURCES PRICING ABOUT US

SUSE SLED12 Security Update : podofo (SUSE-SU-2019:1849-1)

Description

This update for podofo fixes the following issues : Security issues fixed : CVE-2017-8054: Fixed a vulnerability in PdfPagesTree::GetPageNodeFromArray function which could allow remote attackers to cause Denial of Service (bsc#1035596). CVE-2018-5783: Fixed an uncontrolled memory allocation in PdfVecObjects::Reserve function (bsc#1076962). CVE-2018-11255: Fixed a NULL pointer dereference in PdfPage::GetPageNumber() function which could lead to Denial of Service (bsc#1096890). CVE-2018-20751: Fixed a NULL pointer dereference in crop_page function (bsc#1124357). CVE-2018-12982: Fixed an invalid memory read in PdfVariant::DelayedLoad() function which could allow remote attackers to cause Denial of Service (bsc#1099720). Fixed a buffer overflow in TestEncrypt function. Fixed a NULL pointer dereference in PdfTranslator-setTarget function. Fixed a heap-based buffer overflow PdfVariant:DelayedLoad function. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Related