Podofo v0.10.0 exists to contain a heap buffer overflow via the component PoDoFo::PdfEncryptRC4::PdfEncryptRC4.
podofo project podofo 0.10.0