You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Xiaohan Zhang (Jira)" <ji...@apache.org> on 2022/03/25 12:57:00 UTC

[jira] [Updated] (PDFBOX-5401) A carefully crafted pdf can trigger an infinite loop while parsing

     [ https://issues.apache.org/jira/browse/PDFBOX-5401?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Xiaohan Zhang updated PDFBOX-5401:
----------------------------------
    Description: 
Hi, I found a crafted pdf that can trigger an infinite loop while parsing using PDFBOX. I have tested on the latest commit of PDFBOX on Github.

 

This bug can be triggered by the following code.

```

File ff = new File("path/to/the/sample");

PDDocument document = Loader.loadPDF(ff);

```

 

I found that the root cause of this infinite loop resides in the while-loop at line 321 of  [COSParse.java|#L321].]. When parsing the provided PDF files, the variable $prev is never changed during this loop.

  was:
Hi, I found a crafted pdf that can trigger an infinite loop while parsing using PDFBOX. I have tested on the latest commit of PDFBOX on Github.

 

This bug can be triggered by the following code.

```

File ff = new File("path/to/the/sample");

PDDocument document = Loader.loadPDF(ff);

```

 

I found that the root cause of this infinite loop resides in the while-loop at line 321 of  [COSParse.java|[https://github.com/apache/pdfbox/blob/ef7efb482b9d5fa81ed296f6a2fc3ff4e66d4f2f/pdfbox/src/main/java/org/apache/pdfbox/pdfparser/COSParser.java#L321].] When parsing the provided PDF files, the variable $prev is never changed during this loop.


> A carefully crafted pdf can trigger an infinite loop while parsing
> ------------------------------------------------------------------
>
>                 Key: PDFBOX-5401
>                 URL: https://issues.apache.org/jira/browse/PDFBOX-5401
>             Project: PDFBox
>          Issue Type: Bug
>          Components: Parsing, PDModel
>    Affects Versions: 3.0.0 PDFBox
>         Environment: Mac OS 12.1 & Ubuntu Linux 16.04 (4.15.0-163-generic)
>            Reporter: Xiaohan Zhang
>            Priority: Major
>         Attachments: verified.zip
>
>
> Hi, I found a crafted pdf that can trigger an infinite loop while parsing using PDFBOX. I have tested on the latest commit of PDFBOX on Github.
>  
> This bug can be triggered by the following code.
> ```
> File ff = new File("path/to/the/sample");
> PDDocument document = Loader.loadPDF(ff);
> ```
>  
> I found that the root cause of this infinite loop resides in the while-loop at line 321 of  [COSParse.java|#L321].]. When parsing the provided PDF files, the variable $prev is never changed during this loop.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org