### [CVE-2018-5783](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5783)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PoDoFo::PdfVecObjects::Reserve function (base/PdfVecObjects.h). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted pdf file.

### POC

#### Reference
- https://bugzilla.redhat.com/show_bug.cgi?id=1536179
- https://sourceforge.net/p/podofo/tickets/27/

#### Github
- https://github.com/0xCyberY/CVE-T4PDF
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ICSE2020-MemLock/MemLock_Benchmark
- https://github.com/SZU-SE/MemLock_Benchmark
- https://github.com/SZU-SE/Uncontrolled-allocation-Fuzzer-TestSuite
- https://github.com/andir/nixos-issue-db-example
- https://github.com/tzf-key/MemLock_Benchmark
- https://github.com/tzf-omkey/MemLock_Benchmark
- https://github.com/wcventure/MemLock_Benchmark