[3.5] podofo: Multiple vulnerabilities (CVE-2017-6840, CVE-2017-6841, CVE-2017-6842, CVE-2017-6843, CVE-2017-6844, CVE-2017-6845, CVE-2017-6846, CVE-2017-6847, CVE-2017-6848, CVE-2017-6849)
CVE-2017-6840: invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp)
Affected version: 0.9.5
Reference:
http://openwall.com/lists/oss-security/2017/03/13/10
CVE-2017-6841: NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)
Affected version: 0.9.5
Reference:
http://openwall.com/lists/oss-security/2017/03/13/11
CVE-2017-6842: NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp)
Affected version: 0.9.5
Reference:
http://openwall.com/lists/oss-security/2017/03/13/12
CVE-2017-6843: heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)
Affected version: 0.9.4
References:
http://openwall.com/lists/oss-security/2017/03/13/13
CVE-2017-6844: global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp)
Affected version: 0.9.4
References:
http://openwall.com/lists/oss-security/2017/03/13/14
CVE-2017-6845: NULL pointer dereference in PoDoFo::PdfColor::operator= (PdfColor.cpp)
Affected version: 0.9.4
References:
http://openwall.com/lists/oss-security/2017/03/13/15
CVE-2017-6846: NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h)
Affected version: 0.9.4
Reference:
http://openwall.com/lists/oss-security/2017/03/13/16
CVE-2017-6847: NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)
Affected version: 0.9.4
Reference:
http://openwall.com/lists/oss-security/2017/03/13/17
CVE-2017-6848: NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject (PdfXObject.cpp)
Affected version: 0.9.5
Reference:
http://openwall.com/lists/oss-security/2017/03/13/18
CVE-2017-6849: NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp)
Affected version: 0.9.4
Reference:
http://openwall.com/lists/oss-security/2017/03/13/19
(from redmine: issue id 7020, created on 2017-03-16, closed on 2017-05-02)
- Relations:
- parent #7018 (closed)
- Changesets:
- Revision 776bd549 on 2017-05-01T12:33:19Z:
community/podofo: security upgrade to 0.9.5 - partially fixes #7020
CVE-2017-6843, CVE-2017-6844, CVE-2017-6845, CVE-2017-6846, CVE-2017-6847, CVE-2017-6849