Bug 1545272 (CVE-2017-18183) - CVE-2017-18183 qpdf: Infinite Loop in QPDFWriter::enqueueObject in libqpdf/QPDFWriter.cc
Summary: CVE-2017-18183 qpdf: Infinite Loop in QPDFWriter::enqueueObject in libqpdf/QP...
Keywords:
Status: CLOSED WONTFIX
Alias: CVE-2017-18183
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1554691 1554704
Blocks: 1545293
TreeView+ depends on / blocked
 
Reported: 2018-02-14 14:14 UTC by Laura Pardo
Modified: 2021-02-17 00:49 UTC (History)
3 users (show)

Fixed In Version: qpdf 7.1.1
Doc Type: If docs needed, set a value
Doc Text:
An unbounded recursion flaw leading to stack exhaustion was found in the way QPDF parsed PDF files. An attacker could potentially use this flaw to crash QPDF by tricking it into processing crafted QPDF files.
Clone Of:
Environment:
Last Closed: 2019-06-08 03:39:59 UTC
Embargoed:


Attachments (Terms of Use)

Description Laura Pardo 2018-02-14 14:14:26 UTC
A flaw was discovered in QPDF before 7.0.0. There is an infinite recursion loop in the QPDFWriter::enqueueObject() function in libqpdf/QPDFWriter.cc. This allows an attacker to cause a denial of service via a crafted file.


External References:

https://github.com/qpdf/qpdf/issues/143

Upstream Patch:

https://github.com/qpdf/qpdf/commit/8249a26d69f72b9


Note You need to log in before you can comment on or make changes to this bug.