CVE-2018-11254 log

Severity Low
Remote No
Type Denial of service
An issue was discovered in PoDoFo 0.9.6. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054. The issue is fixed in PoDoFo version 0.9.7.
Group Package Affected Fixed Severity Status Ticket
AVG-867 podofo 0.9.6-3 0.9.7-1 Medium Fixed FS#61651
Date Advisory Group Package Severity Type
20 Jan 2021 ASA-202101-36 AVG-867 podofo Medium multiple issues