Opened 21 months ago

Last modified 16 months ago

#14805 closed enhancement

pdfbox-2.0.23 and fontbox-2.0.23 (CVE-2021-27807 CVE-2021-27906) — at Initial Version

Reported by: Douglas R. Reno Owned by: blfs-book
Priority: elevated Milestone: 11.0
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

New point versions of supplemental JARs for fop.

Security information:

CVE-2021-27807 7

[oss-security] CVE-2021-27807: Apache PDFBox: A carefully crafted PDF file can trigger an infinite loop while loading the file.

Description:

A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox Apache PDFBox version 2.0.22 and prior 2.0.x versions.

Credit:

Apache PDFBox would like to thank Fabian Meumertzheim for reporting this issue

CVE-2021-27906

[oss-security] CVE-2021-27906: Apache PDFBox: A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file


Description:

A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox Apache PDFBox version 2.0.22 and prior 2.0.x versions.

This issue is being tracked as PDFBOX-5112

Credit:

Apache PDFBox would like to thank Fabian Meumertzheim for reporting this issue

Change History (0)

Note: See TracTickets for help on using tickets.