[poppler] [PATCH] Avoid DoS due to huge number of JPX tiles in a stream
Albert Astals Cid
aacid at kde.org
Thu Dec 27 15:44:06 PST 2012
El Dimecres, 26 de desembre de 2012, a les 20:55:11, Even Rouault va escriure:
> Hi,
>
> The attached patch (against poppler 0.21.4) fixes a DoS due to huge number
> of JPX tiles in a stream. Also attached the PDF to reproduce the bug.
Commited. but to be honest you should be using JPEG2000Stream.cc instead of
JPXStream.cc, the latter one is a can of worms.
Cheers,
Albert
> Note: a similar fix was committed in OpenJPEG recently:
> http://code.google.com/p/openjpeg/source/detail?r=2239
>
> Best regards,
>
> Even
More information about the poppler
mailing list