Security update for podofo SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:2481-1 Final 1 1 2018-08-22T14:58:50Z current 2018-08-22T14:58:50Z 2018-08-22T14:58:50Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for podofo This update for podofo fixes the following issues: - CVE-2017-5852: The PoDoFo::PdfPage::GetInheritedKeyFromObject function allowed remote attackers to cause a denial of service (infinite loop) via a crafted file (bsc#1023067). - CVE-2017-5853: Integer overflow allowed remote attackers to have unspecified impact via a crafted file (bsc#1023069). - CVE-2017-5854: Prevent NULL pointer dereference that allowed remote attackers to cause a denial of service via a crafted file (bsc#1023070). - CVE-2017-5855: The PoDoFo::PdfParser::ReadXRefSubsection function allowed remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file (bsc#1023071). - CVE-2017-5886: Prevent heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function that allowed remote attackers to have unspecified impact via a crafted file (bsc#1023380). - CVE-2017-6847: The PoDoFo::PdfVariant::DelayedLoad function allowed remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file (bsc#1027778). - CVE-2017-6844: Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function allowed remote attackers to have unspecified impact via a crafted file (bsc#1027782). - CVE-2017-6840: The ColorChanger::GetColorFromStack function allowed remote attackers to cause a denial of service (invalid read) via a crafted file (bsc#1027787). - CVE-2017-7378: The PoDoFo::PdfPainter::ExpandTabs function allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document (bsc#1032017). - CVE-2017-7379: The PoDoFo::PdfSimpleEncoding::ConvertToEncoding function allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document (bsc#1032018). - CVE-2017-7380: Prevent NULL pointer dereference that allowed remote attackers to cause a denial of service via a crafted PDF document (bsc#1032019). - CVE-2017-7994: The function TextExtractor::ExtractText allowed remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document (bsc#1035534). - CVE-2017-8054: The function PdfPagesTree::GetPageNodeFromArray allowed remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted PDF document (bsc#1035596). - CVE-2017-8787: The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function allowed remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted PDF file (bsc#1037739). - CVE-2018-5308: Properly validate memcpy arguments in the PdfMemoryOutputStream::Write function to prevent remote attackers from causing a denial-of-service or possibly have unspecified other impact via a crafted pdf file (bsc#1075772). - CVE-2018-8001: Prevent heap-based buffer over-read vulnerability in UnescapeName() that allowed remote attackers to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file (bsc#1084894). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP3-2018-1744,SUSE-SLE-SDK-12-SP3-2018-1744,SUSE-SLE-WE-12-SP3-2018-1744 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ Link for SUSE-SU-2018:2481-1 https://lists.suse.com/pipermail/sle-security-updates/2018-August/004491.html E-Mail link for SUSE-SU-2018:2481-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1023067 SUSE Bug 1023067 https://bugzilla.suse.com/1023069 SUSE Bug 1023069 https://bugzilla.suse.com/1023070 SUSE Bug 1023070 https://bugzilla.suse.com/1023071 SUSE Bug 1023071 https://bugzilla.suse.com/1023380 SUSE Bug 1023380 https://bugzilla.suse.com/1027778 SUSE Bug 1027778 https://bugzilla.suse.com/1027782 SUSE Bug 1027782 https://bugzilla.suse.com/1027787 SUSE Bug 1027787 https://bugzilla.suse.com/1032017 SUSE Bug 1032017 https://bugzilla.suse.com/1032018 SUSE Bug 1032018 https://bugzilla.suse.com/1032019 SUSE Bug 1032019 https://bugzilla.suse.com/1035534 SUSE Bug 1035534 https://bugzilla.suse.com/1035596 SUSE Bug 1035596 https://bugzilla.suse.com/1037739 SUSE Bug 1037739 https://bugzilla.suse.com/1075772 SUSE Bug 1075772 https://bugzilla.suse.com/1084894 SUSE Bug 1084894 https://www.suse.com/security/cve/CVE-2017-5852/ SUSE CVE CVE-2017-5852 page https://www.suse.com/security/cve/CVE-2017-5853/ SUSE CVE CVE-2017-5853 page https://www.suse.com/security/cve/CVE-2017-5854/ SUSE CVE CVE-2017-5854 page https://www.suse.com/security/cve/CVE-2017-5855/ SUSE CVE CVE-2017-5855 page https://www.suse.com/security/cve/CVE-2017-5886/ SUSE CVE CVE-2017-5886 page https://www.suse.com/security/cve/CVE-2017-6840/ SUSE CVE CVE-2017-6840 page https://www.suse.com/security/cve/CVE-2017-6844/ SUSE CVE CVE-2017-6844 page https://www.suse.com/security/cve/CVE-2017-6847/ SUSE CVE CVE-2017-6847 page https://www.suse.com/security/cve/CVE-2017-7378/ SUSE CVE CVE-2017-7378 page https://www.suse.com/security/cve/CVE-2017-7379/ SUSE CVE CVE-2017-7379 page https://www.suse.com/security/cve/CVE-2017-7380/ SUSE CVE CVE-2017-7380 page https://www.suse.com/security/cve/CVE-2017-7994/ SUSE CVE CVE-2017-7994 page https://www.suse.com/security/cve/CVE-2017-8054/ SUSE CVE CVE-2017-8054 page https://www.suse.com/security/cve/CVE-2017-8787/ SUSE CVE CVE-2017-8787 page https://www.suse.com/security/cve/CVE-2018-5308/ SUSE CVE CVE-2018-5308 page https://www.suse.com/security/cve/CVE-2018-8001/ SUSE CVE CVE-2018-8001 page SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP3 libpodofo0_9_2-0.9.2-3.3.1 libpodofo-devel-0.9.2-3.3.1 libpodofo0_9_2-0.9.2-3.3.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libpodofo-devel-0.9.2-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libpodofo0_9_2-0.9.2-3.3.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP3 The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted file. CVE-2017-5852 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-5852.html CVE-2017-5852 https://bugzilla.suse.com/1023067 SUSE Bug 1023067 Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. CVE-2017-5853 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-5853.html CVE-2017-5853 https://bugzilla.suse.com/1023069 SUSE Bug 1023069 base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. CVE-2017-5854 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-5854.html CVE-2017-5854 https://bugzilla.suse.com/1023070 SUSE Bug 1023070 https://bugzilla.suse.com/1096890 SUSE Bug 1096890 The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. CVE-2017-5855 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-5855.html CVE-2017-5855 https://bugzilla.suse.com/1023071 SUSE Bug 1023071 Heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function in PdfTokenizer.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. CVE-2017-5886 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-5886.html CVE-2017-5886 https://bugzilla.suse.com/1023380 SUSE Bug 1023380 https://bugzilla.suse.com/1084902 SUSE Bug 1084902 The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file. CVE-2017-6840 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-6840.html CVE-2017-6840 https://bugzilla.suse.com/1027787 SUSE Bug 1027787 Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file. CVE-2017-6844 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-6844.html CVE-2017-6844 https://bugzilla.suse.com/1027782 SUSE Bug 1027782 The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. CVE-2017-6847 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-6847.html CVE-2017-6847 https://bugzilla.suse.com/1027778 SUSE Bug 1027778 The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document. CVE-2017-7378 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-7378.html CVE-2017-7378 https://bugzilla.suse.com/1032017 SUSE Bug 1032017 The PoDoFo::PdfSimpleEncoding::ConvertToEncoding function in PdfEncoding.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document. CVE-2017-7379 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-7379.html CVE-2017-7379 https://bugzilla.suse.com/1032018 SUSE Bug 1032018 The doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document. CVE-2017-7380 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-7380.html CVE-2017-7380 https://bugzilla.suse.com/1032019 SUSE Bug 1032019 The function TextExtractor::ExtractText in TextExtractor.cpp:77 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document. CVE-2017-7994 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-7994.html CVE-2017-7994 https://bugzilla.suse.com/1035534 SUSE Bug 1035534 The function PdfPagesTree::GetPageNodeFromArray in PdfPageTree.cpp:464 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted PDF document. CVE-2017-8054 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-8054.html CVE-2017-8054 https://bugzilla.suse.com/1035596 SUSE Bug 1035596 https://bugzilla.suse.com/1094315 SUSE Bug 1094315 The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in base/PdfXRefStreamParserObject.cpp:224 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted PDF file. CVE-2017-8787 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2017-8787.html CVE-2017-8787 https://bugzilla.suse.com/1037739 SUSE Bug 1037739 PoDoFo 0.9.5 does not properly validate memcpy arguments in the PdfMemoryOutputStream::Write function (base/PdfOutputStream.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. CVE-2018-5308 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2018-5308.html CVE-2018-5308 https://bugzilla.suse.com/1075772 SUSE Bug 1075772 In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file. CVE-2018-8001 SUSE Linux Enterprise Desktop 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libpodofo-devel-0.9.2-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libpodofo0_9_2-0.9.2-3.3.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182481-1/ https://www.suse.com/security/cve/CVE-2018-8001.html CVE-2018-8001 https://bugzilla.suse.com/1084894 SUSE Bug 1084894