15 matches found
SUSE CVE-2017-5853
Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...
CVE-2018-6352
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file...
CVE-2017-8378
Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors related to moffsets.size...
Design/Logic Flaw
PoDoFo 0.9.5 allows denial of service infinite recursion and stack consumption via a crafted PDF file in PoDoFo::PdfParser::ReadDocumentStructure PdfParser.cpp...
CVE-2017-8053
PoDoFo 0.9.5 allows denial of service infinite recursion and stack consumption via a crafted PDF file in PoDoFo::PdfParser::ReadDocumentStructure PdfParser.cpp...
CVE-2015-8981
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to moffsets.size...
CVE-2015-8981
The CVE-2015-8981 issue affects PoDoFo's PdfParser::ReadXRefSubsection in base/PdfParser.cpp, where a heap-based buffer overflow can be triggered via vectors related to m_offsets.size, leading to unspecified impact. Public advisories (OSV-2024:3550-1 and similar Fedora/SUSE notes) list patches fo...
CVE-2015-8981
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to moffsets.size...
CVE-2015-8981
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to moffsets.size...
CVE-2017-6844
Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...
CVE-2017-6844
PoDoFo 0.9.4 contains a buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp) that can be triggered by a crafted PDF to achieve unspecified impact. Multiple connected advisories indicate fixes were released (e.g., openSUSE/SUSE-SU-2018:2481-1 and Fedora openSUSE updates) to add...
Integer overflow
Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...
Null pointer dereference
The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...
CVE-2017-5853
CVE-2017-5853 affects the PoDoFo library (PoDoFo 0.9.4) due to a signed/integer overflow in base/PdfParser.cpp, which could allow a remote attacker to impact the host via a crafted PDF file. Public advisories tied to this CVE (e.g., openSUSE/SUSE SU-2018:2481-1 and related Fedora advisories) indi...
CVE-2017-5853
Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...