Описание
Security update for podofo
This update for podofo fixes the following issues:
-
CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection (bsc#1023190)
-
CVE-2017-6840: Fixed invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp) (bsc#1027787)
-
CVE-2017-6841: Fixed NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h) (bsc#1027786)
-
CVE-2017-6842: Fixed NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp) (bsc#1027785)
-
CVE-2017-6845: Fixed NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h) (bsc#1027779)
-
CVE-2017-6849: Fixed NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp) (bsc#1027776)
-
CVE-2017-8378: Fixed denial of service (application crash) vectors related to m_offsets.size (PdfParser::ReadObjects func in base/PdfParser.cpp) (bsc#1037000)
-
CVE-2018-5308: Fixed Undefined behavior (memcpy with NULL pointer) in PdfMemoryOutputStream::Write (src/base/PdfOutputStream.cpp) (bsc#1075772)
-
CVE-2019-10723: Fixed Memory leak in PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp (bsc#1131544)
-
CVE-2019-9199: Fixed NULL pointer dereference in function PoDoFo:Impose:PdfTranslator:setSource() in pdftranslator.cpp (bsc#1127855)
-
Fixed NULL pointer dereference in PdfInfo::GuessFormat (pdfinfo.cpp) (bsc#1023072)
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12 SP5
Ссылки
- Link for SUSE-SU-2024:3541-1
- E-Mail link for SUSE-SU-2024:3541-1
- SUSE Security Ratings
- SUSE Bug 1023072
- SUSE Bug 1023190
- SUSE Bug 1027776
- SUSE Bug 1027779
- SUSE Bug 1027785
- SUSE Bug 1027786
- SUSE Bug 1027787
- SUSE Bug 1037000
- SUSE Bug 1075772
- SUSE Bug 1127855
- SUSE Bug 1131544
- SUSE CVE CVE-2015-8981 page
- SUSE CVE CVE-2017-5854 page
- SUSE CVE CVE-2017-6840 page
- SUSE CVE CVE-2017-6841 page
- SUSE CVE CVE-2017-6842 page
- SUSE CVE CVE-2017-6845 page
Описание
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size.
Затронутые продукты
Ссылки
- CVE-2015-8981
- SUSE Bug 1023190
Описание
base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-5854
- SUSE Bug 1023070
- SUSE Bug 1096890
Описание
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6840
- SUSE Bug 1027787
Описание
The GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6841
- SUSE Bug 1027786
Описание
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6842
- SUSE Bug 1027785
Описание
The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6845
- SUSE Bug 1027779
- SUSE Bug 1027781
Описание
The PoDoFo::PdfColorGray::~PdfColorGray function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6849
- SUSE Bug 1027776
Описание
Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size.
Затронутые продукты
Ссылки
- CVE-2017-8378
- SUSE Bug 1037000
Описание
PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputStream::Write function (base/PdfOutputStream.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.
Затронутые продукты
Ссылки
- CVE-2018-5308
- SUSE Bug 1075772
Описание
An issue was discovered in PoDoFo 0.9.6. The PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp has an attempted excessive memory allocation because nInitialSize is not validated.
Затронутые продукты
Ссылки
- CVE-2019-10723
- SUSE Bug 1131544
Описание
PoDoFo::Impose::PdfTranslator::setSource() in pdftranslator.cpp in PoDoFo 0.9.6 has a NULL pointer dereference that can (for example) be triggered by sending a crafted PDF file to the podofoimpose binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.
Затронутые продукты
Ссылки
- CVE-2019-9199
- SUSE Bug 1127855