Created attachment 1378732 [details]
POC for podofoimgextract issue
on 0.9.5 (the latest version) of podofo:
there is an undefined behavior (memcpy with null pointer) in PdfMemoryOutputStream::Write function (src/base/PdfOutputStream.cpp), which can cause denial of service (crash) or possibly other unspecified impacts via a crafted pdf file.
src/base/PdfOutputStream.cpp:124:48: runtime error: null pointer passed as argument 2, which is declared to never be null
To reproduce the issue, compile podofo with UBSAN "-fsanitize=undefined",
then execute: podofoimgextract $POC OUTPUT_DIR
The POC file is attached.
This issue was assigned CVE-2018-5308.
(In reply to Salvatore Bonaccorso from comment #1)
> This issue was assigned CVE-2018-5308.
Thanks for your work.
We have notified podofo developers via mailing list.