---

CVE-2017-6846 - log back

CVE-2017-6846 edited at 10 Jan 2021 10:18:59

Description

- The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. + The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.

CVE-2017-6846 edited at 10 Jan 2021 09:59:56
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Denial of service
Description	+ The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
References	+ https://sourceforge.net/p/podofo/tickets/9/ + http://sourceforge.net/p/podofo/code/1892/
Notes

CVE-2017-6846 created at 10 Jan 2021 09:54:00