Author: tilman
Date: Wed Jul 23 08:10:32 2025
New Revision: 1927413
Log:
PDFBOX-6044: avoid potential OOM
Modified:
pdfbox/branches/2.0/fontbox/src/main/java/org/apache/fontbox/pfb/PfbParser.java
Modified:
pdfbox/branches/2.0/fontbox/src/main/java/org/apache/fontbox/pfb/PfbParser.java
==============================================================================
---
pdfbox/branches/2.0/fontbox/src/main/java/org/apache/fontbox/pfb/PfbParser.java
Wed Jul 23 08:10:28 2025 (r1927412)
+++
pdfbox/branches/2.0/fontbox/src/main/java/org/apache/fontbox/pfb/PfbParser.java
Wed Jul 23 08:10:32 2025 (r1927413)
@@ -175,6 +175,11 @@ public class PfbParser
{
LOG.debug("record type: " + recordType + ", segment size: " +
size);
}
+ if (size > pfb.length)
+ {
+ // PDFBOX-6044: avoid potential OOM
+ throw new IOException("record size " + size + "would be larger
than the input");
+ }
byte[] ar = new byte[size];
int got = in.read(ar);
if (got != size)
