Information on source package libpodofo

Available versions

ReleaseVersion
jessie0.9.0-1.2
stretch0.9.4-6
buster0.9.5-10
sid0.9.5-11

Open issues

BugjessiestretchbustersidDescription
CVE-2018-8002vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there exists an infinite loop vulnerability in ...
CVE-2018-8001vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there exists a heap-based buffer over-read ...
CVE-2018-6352vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there is an Excessive Iteration in the ...
CVE-2018-5783vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there is an uncontrolled memory allocation in the ...
CVE-2018-5309vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there is an integer overflow in the ...
CVE-2018-5308vulnerable (no DSA)vulnerable (no DSA)fixedfixedPoDoFo 0.9.5 does not properly validate memcpy arguments in the ...
CVE-2018-5296vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn PoDoFo 0.9.5, there is an uncontrolled memory allocation in the ...
CVE-2018-5295vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn PoDoFo 0.9.5, there is an integer overflow in the ...
CVE-2018-15889vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn podofo 0.9.6, the function PoDoFo::PdfParser::ReadObjects() in ...
CVE-2018-14320vulnerablevulnerablevulnerablevulnerableThis vulnerability allows remote attackers to disclose sensitive ...
CVE-2018-12983vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA stack-based buffer over-read in the ...
CVE-2018-12982vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableInvalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function ...
CVE-2018-11256vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in PoDoFo 0.9.5. The function ...
CVE-2018-11255vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in PoDoFo 0.9.5. The function ...
CVE-2018-11254vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in PoDoFo 0.9.5. There is an Excessive ...
CVE-2017-8787vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in ...
CVE-2017-8378vulnerable (no DSA)vulnerable (no DSA)fixedfixedHeap-based buffer overflow in the PdfParser::ReadObjects function in ...
CVE-2017-8054vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe function PdfPagesTree::GetPageNodeFromArray in PdfPageTree.cpp:464 ...
CVE-2017-8053vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerablePoDoFo 0.9.5 allows denial of service (infinite recursion and stack ...
CVE-2017-7994vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe function TextExtractor::ExtractText in TextExtractor.cpp:77 in ...
CVE-2017-7383vulnerable (no DSA)fixedfixedfixedThe PdfFontFactory.cpp:195:62 code in PoDoFo 0.9.5 allows remote ...
CVE-2017-7382vulnerable (no DSA)fixedfixedfixedThe PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote ...
CVE-2017-7381vulnerable (no DSA)fixedfixedfixedThe doc/PdfPage.cpp:609:23 code in PoDoFo 0.9.5 allows remote attackers ...
CVE-2017-7380vulnerable (no DSA)fixedfixedfixedThe doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers ...
CVE-2017-7379vulnerable (no DSA)fixedfixedfixedThe PoDoFo::PdfSimpleEncoding::ConvertToEncoding function in ...
CVE-2017-7378vulnerable (no DSA)fixedfixedfixedThe PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo ...
CVE-2017-6849vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe PoDoFo::PdfColorGray::~PdfColorGray function in PdfColor.cpp in ...
CVE-2017-6848vulnerable (no DSA)fixedfixedfixedThe PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in ...
CVE-2017-6847vulnerable (no DSA)fixedfixedfixedThe PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo ...
CVE-2017-6846vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace ...
CVE-2017-6845vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo ...
CVE-2017-6844vulnerable (no DSA)fixedfixedfixedBuffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function ...
CVE-2017-6843vulnerable (no DSA)fixedfixedfixedHeap-based buffer overflow in the PoDoFo::PdfVariant::DelayedLoad ...
CVE-2017-6842vulnerable (no DSA)fixedfixedfixedThe ColorChanger::GetColorFromStack function in colorchanger.cpp in ...
CVE-2017-6841vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement ...
CVE-2017-6840vulnerable (no DSA)fixedfixedfixedThe ColorChanger::GetColorFromStack function in colorchanger.cpp in ...
CVE-2017-5886vulnerable (no DSA)fixedfixedfixedHeap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken ...
CVE-2017-5855vulnerable (no DSA)fixedfixedfixedThe PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in ...
CVE-2017-5854vulnerable (no DSA)vulnerable (no DSA)fixedfixedbase/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to ...
CVE-2017-5853vulnerable (no DSA)fixedfixedfixedInteger overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote ...
CVE-2017-5852vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe PoDoFo::PdfPage::GetInheritedKeyFromObject function in ...
CVE-2015-8981vulnerable (no DSA)fixedfixedfixedHeap-based buffer overflow in the PdfParser::ReadXRefSubsection ...

Security announcements

DSA / DLADescription
DLA-968-1libpodofo - security update
DLA-929-1libpodofo - security update

Search for package or bug name: Reporting problems