You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Xiaohan Zhang (Jira)" <ji...@apache.org> on 2022/03/25 12:53:00 UTC
[jira] [Created] (PDFBOX-5401) A carefully crafted pdf can trigger an infinite loop while parsing
Xiaohan Zhang created PDFBOX-5401:
-------------------------------------
Summary: A carefully crafted pdf can trigger an infinite loop while parsing
Key: PDFBOX-5401
URL: https://issues.apache.org/jira/browse/PDFBOX-5401
Project: PDFBox
Issue Type: Bug
Components: Parsing, PDModel
Affects Versions: 3.0.0 PDFBox
Environment: Mac OS 12.1 & Ubuntu Linux 16.04 (4.15.0-163-generic)
Reporter: Xiaohan Zhang
Attachments: verified.zip
Hi, I found a crafted pdf that can trigger an infinite loop while parsing using PDFBOX. I have tested on the latest commit of PDFBOX on Github.
This bug can be triggered by the following code.
```
File ff = new File("path/to/the/sample");
PDDocument document = Loader.loadPDF(ff);
```
I found that the root cause of this infinite loop resides in the while-loop at line 321 of [COSParse.java|[https://github.com/apache/pdfbox/blob/ef7efb482b9d5fa81ed296f6a2fc3ff4e66d4f2f/pdfbox/src/main/java/org/apache/pdfbox/pdfparser/COSParser.java#L321].] When parsing the provided PDF files, the variable $prev is never changed during this loop.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org