Backport security fix for CVE-2018-20751

podofo.spec

@@ -1,6 +1,6 @@
 Name:           podofo
 Version:        0.9.6
-Release:        4%{?dist}
+Release:        5%{?dist}
 Summary:        Tools and libraries to work with the PDF file format
 
 # The library is licensed under the LGPL.
@@ -35,6 +35,9 @@ Patch15:        podofo_CVE-2018-14320.patch
 # Backport patch for CVE-2018-19532
 # https://sourceforge.net/p/podofo/code/1950
 Patch16:        podofo_CVE-2018-19532.patch
+# Backport patch for CVE-2018-20751
+# https://sourceforge.net/p/podofo/code/1954
+Patch17:        podofo_CVE-2018-20751.patch
 
 BuildRequires:  gcc-c++
 %if %{?el7:1}%{!?el7:0}
@@ -146,6 +149,9 @@ find doc/html -exec touch -r %{SOURCE0} {} \;
 
 
 %changelog
+* Tue Feb 05 2019 Sandro Mani <manisandro@gmail.com> - 0.9.6-5
+- Backport security fix for CVE-2018-20751
+
 * Sat Feb 02 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.6-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
 

podofo_CVE-2018-20751.patch

@@ -0,0 +1,15 @@
+diff -rupN podofo-0.9.6/tools/podofocrop/podofocrop.cpp podofo-0.9.6-new/tools/podofocrop/podofocrop.cpp
+--- podofo-0.9.6/tools/podofocrop/podofocrop.cpp	2016-11-18 20:08:56.000000000 +0100
++++ podofo-0.9.6-new/tools/podofocrop/podofocrop.cpp	2019-02-05 15:10:16.723460528 +0100
+@@ -61,6 +61,11 @@ void crop_page( PdfPage* pPage, const Pd
+            rCropBox.GetHeight());
+     */
+     rCropBox.ToVariant( var );
++    if (!pPage)
++    {
++        PODOFO_RAISE_ERROR_INFO( ePdfError_InvalidHandle,
++                                "crop_page: No page pointer given" );
++    }
+     pPage->GetObject()->GetDictionary().AddKey( PdfName("MediaBox"), var );
+ }
+