101209 – [pdfunite] crash due to a recursive call of two functions that exhausts the call stack

Bug 101209 - [pdfunite] crash due to a recursive call of two functions that exhausts the call stack

Summary: [pdfunite] crash due to a recursive call of two functions that exhausts the c...

Status:	RESOLVED DUPLICATE of bug 101208

Alias:	None

Product:	poppler
Classification:	Unclassified
Component:	utils (show other bugs)
Version:	unspecified
Hardware:	x86-64 (AMD64) Linux (All)

Importance:	medium normal
Assignee:	poppler-bugs
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-05-27 06:34 UTC by Jiaqi Peng
Modified:	2017-05-27 16:31 UTC (History)
CC List:	0 users

See Also:
i915 platform:
i915 features:

Attachments
analysis_and_PoC (741.54 KB, application/x-rar) 2017-05-27 06:34 UTC, Jiaqi Peng	Details
View All

Description Jiaqi Peng 2017-05-27 06:34:38 UTC

Created attachment 131534 [details]
analysis_and_PoC

## Summary
pdfunite util in poppler-0.55.0 will crash when parsing a crafted pdf file, because the program fall into a recursive and interactive call of two functions and eventually exhaust the stack space.


## Reproduce
pengjiaqi@ubuntu:~/Documents/crash/poppler-0.55.0ild-gcc/utils$ ./pdfunite PoC.pdf 1.pdf
Segmentation fault


## Analysis
Due to the analysis is a little complex, I have uploaded it as an attachment, along with a PoC. In order to avoid disclosing it before patch is released, I have encrypted it. The developers can communicate with me to get the password.


## Author
name: Jiaqi Peng
email: pjqruc@gmail.com

Comment 1 Albert Astals Cid 2017-05-27 16:31:34 UTC


*** This bug has been marked as a duplicate of bug 101208 ***

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.