Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
cyberlens
Pdf Util Poppler
提交
2923613c
P
Pdf Util Poppler
项目概览
cyberlens
/
Pdf Util Poppler
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
DevOps
流水线
流水线任务
计划
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
P
Pdf Util Poppler
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
DevOps
DevOps
流水线
流水线任务
计划
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
流水线任务
提交
Issue看板
前往新版Gitcode,体验更适合开发者的 AI 搜索 >>
提交
2923613c
编写于
11月 01, 2022
作者:
J
Jeremy Bicha
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Drop all patches: applied in new release
上级
01b1686c
变更
3
隐藏空白更改
内联
并排
Showing
3 changed file
with
0 addition
and
71 deletion
+0
-71
debian/patches/JBIG2Stream-Fix-crash-on-broken-file.patch
debian/patches/JBIG2Stream-Fix-crash-on-broken-file.patch
+0
-34
debian/patches/segfault-on-unset-catalog.patch
debian/patches/segfault-on-unset-catalog.patch
+0
-35
debian/patches/series
debian/patches/series
+0
-2
未找到文件。
debian/patches/JBIG2Stream-Fix-crash-on-broken-file.patch
已删除
100644 → 0
浏览文件 @
01b1686c
From: Albert Astals Cid <aacid@kde.org>
Date: Thu, 25 Aug 2022 00:14:22 +0200
Subject: JBIG2Stream: Fix crash on broken file
Origin: https://gitlab.freedesktop.org/poppler/poppler/-/commit/27354e9d9696ee2bc063910a6c9a6b27c5184a52
Bug-Debian: https://bugs.debian.org/1018971
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2022-38784
https://github.com/jeffssh/CVE-2021-30860
Thanks to David Warren for the heads up
---
poppler/JBIG2Stream.cc | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/poppler/JBIG2Stream.cc b/poppler/JBIG2Stream.cc
index 662276e547eb..9f70431de49e 100644
--- a/poppler/JBIG2Stream.cc
+++ b/poppler/JBIG2Stream.cc
@@ -1976,7 +1976,11 @@
void JBIG2Stream::readTextRegionSeg(unsigned int segNum, bool imm, bool lossless
for (i = 0; i < nRefSegs; ++i) {
if ((seg = findSegment(refSegs[i]))) {
if (seg->getType() == jbig2SegSymbolDict) {
- numSyms += ((JBIG2SymbolDict *)seg)->getSize();
+ const unsigned int segSize = ((JBIG2SymbolDict *)seg)->getSize();
+ if (unlikely(checkedAdd(numSyms, segSize, &numSyms))) {
+ error(errSyntaxError, getPos(), "Too many symbols in JBIG2 text region");
+ return;
+ }
} else if (seg->getType() == jbig2SegCodeTable) {
codeTables.push_back(seg);
}
--
2.37.2
debian/patches/segfault-on-unset-catalog.patch
已删除
100644 → 0
浏览文件 @
01b1686c
Description: fix a segfault when a document does not have a catalog
New poppler causes segfaults in r-cran-pdftools because the
get_pdf_version() function now depends on the document having a non-null
catalog, which is evidently not guaranteed to be the case. Maybe something
is supposed to initialize it, but we can at least fix the segfault and
restore compatibility with previous behavior by checking for a null catalog
before dereferencing.
Author: Steve Langasek <steve.langasek@ubuntu.com>
Last-Update: 2021-12-08
Forwarded: no
Index: poppler-21.11.0/poppler/PDFDoc.h
===================================================================
--- poppler-21.11.0.orig/poppler/PDFDoc.h
+++ poppler-21.11.0/poppler/PDFDoc.h
@@ -283,16 +283,16 @@
PDFSubtypeConformance getPDFSubtypeConformance() const { return pdfConformance; }
// Return the PDF version specified by the file (either header or catalog).
- int getPDFMajorVersion() const { return std::max(headerPdfMajorVersion, catalog->getPDFMajorVersion()); }
+ int getPDFMajorVersion() const { return std::max(headerPdfMajorVersion, catalog ? catalog->getPDFMajorVersion() : 0); }
int getPDFMinorVersion() const
{
- const int catalogMajorVersion = catalog->getPDFMajorVersion();
+ const int catalogMajorVersion = catalog ? catalog->getPDFMajorVersion() : 0;
if (catalogMajorVersion > headerPdfMajorVersion) {
return catalog->getPDFMinorVersion();
} else if (headerPdfMajorVersion > catalogMajorVersion) {
return headerPdfMinorVersion;
} else {
- return std::max(headerPdfMinorVersion, catalog->getPDFMinorVersion());
+ return std::max(headerPdfMinorVersion, catalog ? catalog->getPDFMinorVersion() : 0);
}
}
debian/patches/series
浏览文件 @
2923613c
segfault-on-unset-catalog.patch
JBIG2Stream-Fix-crash-on-broken-file.patch
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录