The PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "low", "binaries": [ { "binary_version": "0.9.0-1.2ubuntu0.1~esm1", "binary_name": "libpodofo-dev" }, { "binary_version": "0.9.0-1.2ubuntu0.1~esm1", "binary_name": "libpodofo-utils" }, { "binary_version": "0.9.0-1.2ubuntu0.1~esm1", "binary_name": "libpodofo0.9.0" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "0.9.5-9", "binary_name": "libpodofo-dev" }, { "binary_version": "0.9.5-9", "binary_name": "libpodofo-utils" }, { "binary_version": "0.9.5-9", "binary_name": "libpodofo-utils-dbgsym" }, { "binary_version": "0.9.5-9", "binary_name": "libpodofo0.9.5" }, { "binary_version": "0.9.5-9", "binary_name": "libpodofo0.9.5-dbgsym" } ] }