logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-5295

Description

In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::ParseStream function (base/PdfXRefStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file.


Affected Package


OS OS Version Package Name Package Version
ubuntu 14.04 libpodofo any
ubuntu upstream libpodofo 0.9.5-9
ubuntu 16.04 libpodofo any

Related