CVE-2024-42358 | Michaelrsweet pdfio up to 1.3.0 TTF Parser ttf.h read_camp nGroups infinite loop (GHSA-4hh9-j68x-8353)

CVE-2024-42358 | Michaelrsweet pdfio up to 1.3.0 TTF Parser ttf.h read_camp nGroups infinite loop (GHSA-4hh9-j68x-8353)

A vulnerability was found in Michaelrsweet pdfio up to 1.3.0 and classified as problematic. Affected by this issue is the function read_camp in the library ttf.h of the component TTF Parser. The manipulation of the argument nGroups leads to infinite loop. This vulnerability is handled as CVE-2024-42358. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.