Debian Libpodofo vulnerabilities

CVE-2018-5783 [MEDIUM] CVE-2018-5783: libpodofo - In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PoDoFo::PdfVe... In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PoDoFo::PdfVecObjects::Reserve function (base/PdfVecObjects.h). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-4) bullseye: resolved (fixed in 0.9.6+dfsg-4) forky: resolved (fixed in 0.9.6+

CVE-2018-14320 [MEDIUM] CVE-2018-14320: libpodofo - This vulnerability allows remote attackers to disclose sensitive information on ... This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseToUnicode. The issue results from the lack of proper validation of

CVE-2018-6352 [MEDIUM] CVE-2018-6352: libpodofo - In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsIn... In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-3) bullseye: resolved (fixed in 0.9.6+dfsg-3) forky: resolved (fixed in 0.9.6+dfsg-3)

CVE-2018-5296 [MEDIUM] CVE-2018-5296: libpodofo - In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PdfParser::Re... In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PdfParser::ReadXRefSubsection function (base/PdfParser.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-3) bullseye: resolved (fixed in 0.9.6+dfsg-3) forky: resolved (fixed in 0.9.6+dfs

CVE-2018-11255 [MEDIUM] CVE-2018-11255: libpodofo - An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() i... An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document. Scope: local bookworm: resolved (fixed in 0.9.7+dfsg-2) bullseye: resolved (fixed in 0.9.7+dfsg-2) forky: resolved (fixed in

CVE-2018-12983 [HIGH] CVE-2018-12983: libpodofo - A stack-based buffer over-read in the PdfEncryptMD5Base::ComputeEncryptionKey() ... A stack-based buffer over-read in the PdfEncryptMD5Base::ComputeEncryptionKey() function in PdfEncrypt.cpp in PoDoFo 0.9.6-rc1 could be leveraged by remote attackers to cause a denial-of-service via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.8+dfsg-2) bullseye: open forky: resolved (fixed in 0.9.8+dfsg-2) sid: resolved (fixed in 0.9.8+dfsg-2

CVE-2018-19532 [HIGH] CVE-2018-19532: libpodofo - A NULL pointer dereference vulnerability exists in the function PdfTranslator::s... A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-4) bullseye: resolved (fixed in 0.9.6+dfsg-4) forky: resolved (fixed i

CVE-2018-5309 [MEDIUM] CVE-2018-5309: libpodofo - In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject... In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function (base/PdfObjectStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-3) bullseye: resolved (fixed in 0.9.6+dfsg-3) forky: res

CVE-2018-8001 [HIGH] CVE-2018-8001: libpodofo - In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in Une... In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-3) bullseye: resolved (fixed in 0.9.6+dfsg-3) forky: resolved (fix

CVE-2018-20797 [MEDIUM] CVE-2018-20797: libpodofo - An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory ... An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofo_calloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPredictorDecoder in base/PdfFiltersPrivate.cpp. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2018-11254 [MEDIUM] CVE-2018-11254: libpodofo - An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the ... An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-4) bullseye: resolved (fixed in

CVE-2018-11256 [MEDIUM] CVE-2018-11256: libpodofo - An issue was discovered in PoDoFo 0.9.5. The function PdfDocument::Append() in P... An issue was discovered in PoDoFo 0.9.5. The function PdfDocument::Append() in PdfDocument.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-4) bullseye: resolved (fixed in 0.9.6+dfsg-4) forky: resolved (fixed i

CVE-2018-5295 [MEDIUM] CVE-2018-5295: libpodofo - In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::... In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::ParseStream function (base/PdfXRefStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.5-9) bullseye: resolved (fixed in 0.9.5-9) forky: resolved (fixed in 0.9.5-9)

CVE-2018-5308 [HIGH] CVE-2018-5308: libpodofo - PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputS... PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputStream::Write function (base/PdfOutputStream.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. Scope: local bookworm: resolved (fixed in 0.9.5-9) bullseye: resolved (fixed in 0.9.5-9) forky: r

CVE-2018-12982 [MEDIUM] CVE-2018-12982: libpodofo - Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function in PdfVari... Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function in PdfVariant.h in PoDoFo 0.9.6-rc1 allows remote attackers to have denial-of-service impact via a crafted file. Scope: local bookworm: resolved (fixed in 0.9.6+dfsg-4) bullseye: resolved (fixed in 0.9.6+dfsg-4) forky: resolved (fixed in 0.9.6+dfsg-4) sid: resolved (fixed in 0.9.6+dfsg-4) trix

CVE-2017-8378 [CRITICAL] CVE-2017-8378: libpodofo - Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfPar... Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size. Scope: local bookworm: resolved (fixed in 0.9.5-9) bullseye: resolved (fixed in 0.9.5-9) forky: resolved (

CVE-2017-6843 [HIGH] CVE-2017-6843: libpodofo - Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in Pd... Heap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 0.9.4-6) bullseye: resolved (fixed in 0.9.4-6) forky: resolved (fixed in 0.9.4-6) sid: resolved (fixed in 0.9.4-6) trixie: resolved (fixed in 0.9.4-

CVE-2017-6844 [HIGH] CVE-2017-6844: libpodofo - Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function in PdfPars... Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 0.9.4-5) bullseye: resolved (fixed in 0.9.4-5) forky: resolved (fixed in 0.9.4-5) sid: resolved (fixed in 0.9.4-5) trixie: resolved (fixed in 0.9.4-5)

CVE-2017-5886 [HIGH] CVE-2017-5886: libpodofo - Heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function in... Heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function in PdfTokenizer.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 0.9.4-5) bullseye: resolved (fixed in 0.9.4-5) forky: resolved (fixed in 0.9.4-5) sid: resolved (fixed in 0.9.4-5) trixie: resolved (fixed in

CVE-2017-5853 [HIGH] CVE-2017-5853: libpodofo - Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers t... Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 0.9.4-5) bullseye: resolved (fixed in 0.9.4-5) forky: resolved (fixed in 0.9.4-5) sid: resolved (fixed in 0.9.4-5) trixie: resolved (fixed in 0.9.4-5)