You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Tim Allison (Jira)" <ji...@apache.org> on 2022/03/25 14:08:00 UTC
[jira] [Comment Edited] (PDFBOX-5401) A carefully crafted pdf can trigger an infinite loop while parsing
[ https://issues.apache.org/jira/browse/PDFBOX-5401?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17512397#comment-17512397 ]
Tim Allison edited comment on PDFBOX-5401 at 3/25/22, 2:07 PM:
---------------------------------------------------------------
Can confirm behavior with the last 2.0.26-SNAPSHOT I used for regression tests (from earlier this week?) with 3 of the 4 files ({{bda2803...}} does not cause problems for me).
was (Author: tallison@mitre.org):
Can confirm behavior with the last 2.0.26-SNAPSHOT I used for regression tests with 3 of the 4 files ({{bda2803...}} does not cause problems for me.
> A carefully crafted pdf can trigger an infinite loop while parsing
> ------------------------------------------------------------------
>
> Key: PDFBOX-5401
> URL: https://issues.apache.org/jira/browse/PDFBOX-5401
> Project: PDFBox
> Issue Type: Bug
> Components: Parsing, PDModel
> Affects Versions: 3.0.0 PDFBox
> Environment: Mac OS 12.1 & Ubuntu Linux 16.04 (4.15.0-163-generic)
> Reporter: Xiaohan Zhang
> Priority: Major
> Attachments: verified.zip
>
>
> Hi, I found a crafted pdf that can trigger an infinite loop while parsing using PDFBOX. I have tested on the latest commit of PDFBOX on Github.
>
> This bug can be triggered by the following code.
> ```
> File ff = new File("path/to/the/sample");
> PDDocument document = Loader.loadPDF(ff);
> ```
>
> I found that the root cause of this infinite loop resides in the while-loop at line 321 of [COSParse.java|#L321].]. When parsing the provided PDF files, the variable $prev is never changed during this loop.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org