http://bugzilla.opensuse.org/show_bug.cgi?id=1023190 Bug ID: 1023190 Summary: VUL-1: CVE-2015-8981: podofo: heap overflow in the function ReadXRefSubsection Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mikhail.kasimov@gmail.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Ref: http://seclists.org/oss-sec/2017/q1/290 ============================================= https://sourceforge.net/p/podofo/mailman/message/34205419/ http://sourceforge.net/p/podofo/code/1672 heap overflow in the function ReadXRefSubsection Use CVE-2015-8981. - -- CVE Assignment Team M/S M300, 202 Burlington Road, Bedford, MA 01730 USA [ A PGP key is available for encrypted communications at http://cve.mitre.org/cve/request_id.html ] ============================================= Not sure, if this bug is actual for current podofo version in https://software.opensuse.org/package/podofo TW: 0.9.4 42.(1|2): 0.9.3 Please, check this out. Thanks! -- You are receiving this mail because: You are on the CC list for the bug.