Submit #117088: podofo-0.10.0 was discovered to contain a heap-buffer-overflow via the function readXRefStreamEntry at podofo-0.10.0/src/podofo/main/PdfXRefStreamParserObject.cppinfo

Titelpodofo-0.10.0 was discovered to contain a heap-buffer-overflow via the function readXRefStreamEntry at podofo-0.10.0/src/podofo/main/PdfXRefStreamParserObject.cpp
BeschreibungThere exists heap-buffer-overflow at podofo-0.10.0/src/podofo/main/PdfXRefStreamParserObject.cpp:180:75 in readXRefStreamEntry. This flaw can be exploited to perform attacks such as code execution, denial of service, and privilege escalation. I have contacted the developer of podofo,and now the flaw was confirmed and fixed.The detail is in https://github.com/podofo/podofo/issues/69.
Quelle⚠️ https://github.com/podofo/podofo/issues/69
Benutzer
 DaisyPo (UID 45463)
Einreichung21.04.2023 18:34 (vor 3 Jahren)
Moderieren22.04.2023 17:42 (23 hours later)
StatusAkzeptiert
VulDB Eintrag227226 [PoDoFo 0.10.0 PdfXRefStreamParserObject.cpp readXRefStreamEntry Pufferüberlauf]
Punkte19

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!