CVE-2018-12983 - log back

CVE-2018-12983 edited at 10 Jan 2021 10:29:23
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A stack-based buffer over-read in the PdfEncryptMD5Base::ComputeEncryptionKey() function in PdfEncrypt.cpp in PoDoFo could be leveraged by remote attackers to cause a denial-of-service via a crafted pdf file.
References
+ https://sourceforge.net/p/podofo/tickets/23/
+ https://bugzilla.redhat.com/show_bug.cgi?id=1595693
+ https://bugzilla.redhat.com/attachment.cgi?id=1455024
Notes
CVE-2018-12983 created at 10 Jan 2021 10:26:08