Описание
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libpdfbox2-java | fixed | 2.0.24-1 | package | |
| libpdfbox2-java | no-dsa | bullseye | package | |
| libpdfbox2-java | no-dsa | buster | package | |
| libpdfbox-java | unfixed | package | ||
| libpdfbox-java | ignored | trixie | package | |
| libpdfbox-java | ignored | bookworm | package | |
| libpdfbox-java | no-dsa | bullseye | package | |
| libpdfbox-java | no-dsa | buster | package | |
| libpdfbox-java | no-dsa | stretch | package |
Примечания
https://www.openwall.com/lists/oss-security/2021/06/12/1
https://github.com/apache/pdfbox/commit/cd17a19e9ab1028dc662e972dd8dbb3fa68b4a33
EPSS
Связанные уязвимости
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
EPSS