[Poppler-bugs] [Bug 38209] Problematic flow at poppler while 'startxref' is missing
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Mon Jul 25 02:39:09 PDT 2011
https://bugs.freedesktop.org/show_bug.cgi?id=38209
Hib Eris <hib at hiberis.nl> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #47867|0 |1
is obsolete| |
--- Comment #7 from Hib Eris <hib at hiberis.nl> 2011-07-25 02:39:09 PDT ---
Created an attachment (id=49495)
View: https://bugs.freedesktop.org/attachment.cgi?id=49495
Review: https://bugs.freedesktop.org/review?bug=38209&attachment=49495
0001-Handle-missing-startxref-properly.patch
I agree that it would be better if the strToUnsigned function is not called for
the case that no startxref can be found.
Looking back at were this code came from, I copied and adapted it from the
original XRef.cc, but made a mistake in adapting it. Thanks for finding and
reporting this issue.
This new patch will correct my mistake.
However, I also agree with Albert that there must be another issue here: in the
test document, the startxref is missing completely, but any malicious document
could just as well have a valid startxref section returning an arbitrary value
like the value 1111000110 that was reported in the bug report.
--
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the Poppler-bugs
mailing list