| Severity |
|
| Remote |
|
| Type |
| - |
Unknown |
| + |
Denial of service |
|
| Description |
| + |
In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function (base/PdfObjectStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. |
|
| References |
| + |
https://sourceforge.net/p/podofo/tickets/5/ |
| + |
https://bugzilla.redhat.com/show_bug.cgi?id=1532381 |
| + |
https://bugzilla.redhat.com/attachment.cgi?id=1378729 |
| + |
https://sourceforge.net/p/podofo/code/1907/ |
|
| Notes |
|