CVE-2018-19532 - log back

CVE-2018-19532 edited at 10 Jan 2021 10:59:11
Description
- A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service.
+ A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service. The issue is fixed in PoDoFo version 0.9.7.
CVE-2018-19532 edited at 10 Jan 2021 09:39:15
References
https://research.loginsoft.com/vulnerability/null-pointer-dereference-vulnerability-in-pdftranslatorsettarget-podofo-0-9-6/
https://sourceforge.net/p/podofo/tickets/32/
- https://sourceforge.net/p/podofo/code/1950
+ https://sourceforge.net/p/podofo/code/1950/
CVE-2018-19532 edited at 10 Jan 2021 09:24:50
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service.
References
+ https://research.loginsoft.com/vulnerability/null-pointer-dereference-vulnerability-in-pdftranslatorsettarget-podofo-0-9-6/
+ https://sourceforge.net/p/podofo/tickets/32/
+ https://sourceforge.net/p/podofo/code/1950
CVE-2018-19532 created at 10 Jan 2021 09:16:02
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes