---

CVE-2018-11254 - log back

CVE-2018-11254 edited at 10 Jan 2021 10:56:48

Description

- An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054. + An issue was discovered in PoDoFo 0.9.6. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054. The issue is fixed in PoDoFo version 0.9.7.

CVE-2018-11254 edited at 10 Jan 2021 09:33:55
References	https://bugzilla.redhat.com/show_bug.cgi?id=1576174 + https://sourceforge.net/p/podofo/code/1941/

CVE-2018-11254 edited at 10 Jan 2021 09:20:47
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Denial of service
Description	+ An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1576174

CVE-2018-11254 created at 10 Jan 2021 09:16:02
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes