In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function (base/PdfObjectStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Reference: https://bugzilla.redhat.com/show_bug.cgi?id=1532381
Created podofo tracking bugs for this issue: Affects: epel-all [bug 1533663] Affects: fedora-all [bug 1533662]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.