[jira] [Commented] (PDFBOX-4351) IndexOutOfBoundsException when reading from InputStreamSource

Sun, 21 Oct 2018 04:00:08 -0700 


    [ 
https://issues.apache.org/jira/browse/PDFBOX-4351?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16658168#comment-16658168
 ] 

ASF subversion and git services commented on PDFBOX-4351:
---------------------------------------------------------

Commit 1844478 from [email protected] in branch 'pdfbox/trunk'
[ https://svn.apache.org/r1844478 ]

PDFBOX-4351: handle premature end of stream to avoid IOOBE

> IndexOutOfBoundsException when reading from InputStreamSource
> -------------------------------------------------------------
>
>                 Key: PDFBOX-4351
>                 URL: https://issues.apache.org/jira/browse/PDFBOX-4351
>             Project: PDFBox
>          Issue Type: Bug
>    Affects Versions: 2.0.12
>            Reporter: Robin Schimpf
>            Assignee: Andreas Lehmkühler
>            Priority: Minor
>         Attachments: IndexOutOfBoundsException in PushbackInputStream called 
> from InputStreamSource#read
>
>
> Fuzzing PDF loading with [JQF|https://github.com/rohanpadhye/jqf] triggered 
> an IndexOutOfBoundsException.
> {code:java}
> java.lang.IndexOutOfBoundsException
>       at java.io.PushbackInputStream.read(PushbackInputStream.java:170)
>       at 
> org.apache.pdfbox.pdfparser.InputStreamSource.read(InputStreamSource.java:62)
>       at 
> org.apache.pdfbox.pdfparser.InputStreamSource.readFully(InputStreamSource.java:113)
>       at 
> org.apache.pdfbox.pdfparser.BaseParser.parseDirObject(BaseParser.java:907)
>       at 
> org.apache.pdfbox.pdfparser.BaseParser.parseCOSArray(BaseParser.java:631)
>       at 
> org.apache.pdfbox.pdfparser.BaseParser.parseDirObject(BaseParser.java:874)
>       at 
> org.apache.pdfbox.pdfparser.PDFObjectStreamParser.parse(PDFObjectStreamParser.java:84)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.parseObjectStream(COSParser.java:994)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.retrieveCOSDictionary(COSParser.java:2277)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.searchForTrailerItems(COSParser.java:2235)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.rebuildTrailer(COSParser.java:2216)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.retrieveTrailer(COSParser.java:279)
>       at 
> org.apache.pdfbox.pdfparser.PDFParser.initialParse(PDFParser.java:171)
>       at org.apache.pdfbox.pdfparser.PDFParser.parse(PDFParser.java:220)
>       at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:1160)
>       at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:1057)
>     ...
> {code}
> The Code used for fuzzing is
> {code:java}
> PDDocument.load(inputStream)
> {code}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to