CVE-2021-30472 - log back

CVE-2021-30472 edited at 09 Apr 2021 10:31:05
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was found in PoDoFo. A stack-based buffer overflow in PdfEncryptMD5Base::ComputeOwnerKey function in PdfEncrypt.cpp is possible because of a improper check of the keyLength value.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1947458
+ https://sourceforge.net/p/podofo/tickets/132/
+ https://sourceforge.net/p/podofo/tickets/132/attachment/bug4
Notes
CVE-2021-30472 created at 09 Apr 2021 10:24:26