PoDoFo 'PoDoFo::PdfVariant::DelayedLoad' function buffer overflow vulnerability

PoDoFo is an open source , written in C++ using the PDF file format library . A buffer overflow vulnerability exists in PoDoFo's 'PoDoFo::PdfVariant::DelayedLoad' function. Allows a remote attacker to construct a malicious file and trick the user into parsing it, which can crash the application...

CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

DEBIAN-CVE-2017-6847

The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...

DEBIAN-CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6847

The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...

UBUNTU-CVE-2017-6847

The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...

UBUNTU-CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6843

Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-6847

CVE-2017-6847 affects the PoDoFo library (PoDoFo 0.9.4) and is caused by a NULL pointer dereference in the DelayedLoad function of PdfVariant.h when processing crafted PDFs. Publicly referenced advisories in connected documents confirm the issue is fixed in subsequent PoDoFo updates (e.g., openSU...

CVE-2017-6843

CVE-2017-6843 describes a heap-based buffer overflow in PoDoFo 0.9.4, specifically PoDoFo::PdfVariant::DelayedLoad in PdfVariant.h, exploitable by a crafted file. The initial description lists the impact as unspecified; no remediation or patch details are provided in the supplied documents.