Vulnerabilities > CVE-2018-11255 - NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

podofo-project

CWE-476

nessus

NVD

Published: 2018-05-18

Updated: 2018-06-15

Summary

An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

Vulnerable Configurations

Part	Description	Count
Application	Podofo_Project Podofo Project Podofo 0.9.5	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Nessus

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-6B9320D9C9.NASL
description	This update fixes multiple security vulnerabilities: CVE-2018-5783, CVE-2018-11254, CVE-2018-11255, CVE-2018-11256, CVE-2018-12982, CVE-2018-14320, CVE-2018-19532 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2019-01-03
plugin id	120503
published	2019-01-03
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120503
title	Fedora 29 : mingw-podofo / podofo (2018-6b9320d9c9)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2019-1849-1.NASL
description	This update for podofo fixes the following issues : Security issues fixed : CVE-2017-8054: Fixed a vulnerability in PdfPagesTree::GetPageNodeFromArray function which could allow remote attackers to cause Denial of Service (bsc#1035596). CVE-2018-5783: Fixed an uncontrolled memory allocation in PdfVecObjects::Reserve function (bsc#1076962). CVE-2018-11255: Fixed a NULL pointer dereference in PdfPage::GetPageNumber() function which could lead to Denial of Service (bsc#1096890). CVE-2018-20751: Fixed a NULL pointer dereference in crop_page function (bsc#1124357). CVE-2018-12982: Fixed an invalid memory read in PdfVariant::DelayedLoad() function which could allow remote attackers to cause Denial of Service (bsc#1099720). Fixed a buffer overflow in TestEncrypt function. Fixed a NULL pointer dereference in PdfTranslator-setTarget function. Fixed a heap-based buffer overflow PdfVariant:DelayedLoad function. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	126739
published	2019-07-16
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/126739
title	SUSE SLED12 Security Update : podofo (SUSE-SU-2019:1849-1)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1575502