CVE-2018-11255 - log back

CVE-2018-11255 edited at 10 Jan 2021 10:57:03
Description
- An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
+ An issue was discovered in PoDoFo 0.9.6. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document. The issue is fixed in PoDoFo version 0.9.7.
CVE-2018-11255 edited at 10 Jan 2021 09:36:09
References
+ https://sourceforge.net/p/podofo/tickets/20/
https://bugzilla.redhat.com/show_bug.cgi?id=1575502
+ https://bugzilla.redhat.com/attachment.cgi?id=1432515
+ https://sourceforge.net/p/podofo/code/1952/
CVE-2018-11255 edited at 10 Jan 2021 09:21:23
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1575502
CVE-2018-11255 created at 10 Jan 2021 09:16:02
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes