https://bugzilla.redhat.com/show_bug.cgi?id=1971648
Bug ID: 1971648 Summary: CVE-2021-31811 pdfbox: OutOfMemory-Exception while loading a crafted PDF file Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team@redhat.com Reporter: gsuckevi@redhat.com CC: aileenc@redhat.com, akoufoud@redhat.com, alazarot@redhat.com, almorale@redhat.com, anstephe@redhat.com, bibryam@redhat.com, chazlett@redhat.com, drieden@redhat.com, etirelli@redhat.com, ggaughan@redhat.com, gmalinko@redhat.com, gvarsami@redhat.com, hbraun@redhat.com, ibek@redhat.com, janstey@redhat.com, java-sig-commits@lists.fedoraproject.org, jcoleman@redhat.com, jochrist@redhat.com, jolee@redhat.com, jrokos@redhat.com, jschatte@redhat.com, jstastny@redhat.com, jwon@redhat.com, kconner@redhat.com, krathod@redhat.com, kverlaen@redhat.com, ldimaggi@redhat.com, mnovotny@redhat.com, nwallace@redhat.com, pantinor@redhat.com, pjindal@redhat.com, puntogil@libero.it, rhel8-maint@redhat.com, rrajasek@redhat.com, rwagner@redhat.com, sergio@serjux.com, tcunning@redhat.com, tkirby@redhat.com, tzimanyi@redhat.com Target Milestone: --- Classification: Other
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
References: https://www.openwall.com/lists/oss-security/2021/06/12/2 https://lists.apache.org/thread.html/re3bd16f0cc8f1fbda46b06a4b8241cd417f714...