Podofo · Podofo · CVE-2019-10723
**Name of the Vulnerable Software and Affected Versions**
PoDoFo version 0.9.6
**Description**
An issue was discovered in the PdfPagesTreeCache class where there is an attempted excessive memory allocation due to the lack of validation of the `nInitialSize` variable.
**Recommendations**
For PoDoFo version 0.9.6, consider validating the `nInitialSize` variable in the PdfPagesTreeCache class to prevent excessive memory allocation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.