Описание
Security update for podofo
This update for podofo fixes the following issues:
-
CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection (bsc#1023190)
-
CVE-2017-6840: Fixed invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp) (bsc#1027787)
-
CVE-2017-6841: Fixed NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h) (bsc#1027786)
-
CVE-2017-6842: Fixed NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp) (bsc#1027785)
-
CVE-2017-6845: Fixed NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h) (bsc#1027779)
-
CVE-2017-6849: Fixed NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp) (bsc#1027776)
-
CVE-2017-8378: Fixed denial of service (application crash) vectors related to m_offsets.size (PdfParser::ReadObjects func in base/PdfParser.cpp) (bsc#1037000)
-
Fixed NULL pointer dereference in PdfInfo::GuessFormat (pdfinfo.cpp) (bsc#1023072)
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP5
SUSE Linux Enterprise Module for Package Hub 15 SP6
openSUSE Leap 15.5
openSUSE Leap 15.6
Ссылки
- Link for SUSE-SU-2024:3550-1
- E-Mail link for SUSE-SU-2024:3550-1
- SUSE Security Ratings
- SUSE Bug 1023072
- SUSE Bug 1023190
- SUSE Bug 1027776
- SUSE Bug 1027779
- SUSE Bug 1027785
- SUSE Bug 1027786
- SUSE Bug 1027787
- SUSE Bug 1037000
- SUSE Bug 1075322
- SUSE Bug 1084894
- SUSE CVE CVE-2015-8981 page
- SUSE CVE CVE-2017-6840 page
- SUSE CVE CVE-2017-6841 page
- SUSE CVE CVE-2017-6842 page
- SUSE CVE CVE-2017-6845 page
- SUSE CVE CVE-2017-6849 page
- SUSE CVE CVE-2017-8378 page
Описание
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size.
Затронутые продукты
Ссылки
- CVE-2015-8981
- SUSE Bug 1023190
Описание
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6840
- SUSE Bug 1027787
Описание
The GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6841
- SUSE Bug 1027786
Описание
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6842
- SUSE Bug 1027785
Описание
The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6845
- SUSE Bug 1027779
- SUSE Bug 1027781
Описание
The PoDoFo::PdfColorGray::~PdfColorGray function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2017-6849
- SUSE Bug 1027776
Описание
Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size.
Затронутые продукты
Ссылки
- CVE-2017-8378
- SUSE Bug 1037000
Описание
In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function (base/PdfObjectStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file.
Затронутые продукты
Ссылки
- CVE-2018-5309
- SUSE Bug 1075322
Описание
In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.
Затронутые продукты
Ссылки
- CVE-2018-8001
- SUSE Bug 1084894