Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "libpodofo-dev", "binary_version": "0.9.5-9" }, { "binary_name": "libpodofo-utils", "binary_version": "0.9.5-9" }, { "binary_name": "libpodofo-utils-dbgsym", "binary_version": "0.9.5-9" }, { "binary_name": "libpodofo0.9.5", "binary_version": "0.9.5-9" }, { "binary_name": "libpodofo0.9.5-dbgsym", "binary_version": "0.9.5-9" } ] }