diff options
| author | Jay Berkenbilt <ejb@ql.org> | 2017-07-25 16:21:27 +0200 |
|---|---|---|
| committer | Jay Berkenbilt <ejb@ql.org> | 2017-07-26 12:24:07 +0200 |
| commit | 315092dd98d5230ef0efa18b294d464d0e9f79d0 (patch) | |
| tree | c0031a373dd87c04d2d34f2fbcd7602b344c4ac2 /include | |
| parent | 603f222365252f1a1e20303b3dbe52466be3053b (diff) | |
| download | qpdf-315092dd98d5230ef0efa18b294d464d0e9f79d0.tar.zst | |
Avoid xref reconstruction infinite loop (fixes #100)
This is CVE-2017-9209.
Diffstat (limited to 'include')
| -rw-r--r-- | include/qpdf/QPDF.hh | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/include/qpdf/QPDF.hh b/include/qpdf/QPDF.hh index 88acf6c5..f7a31edf 100644 --- a/include/qpdf/QPDF.hh +++ b/include/qpdf/QPDF.hh @@ -1075,6 +1075,7 @@ class QPDF // copied_stream_data_provider is owned by copied_streams CopiedStreamDataProvider* copied_stream_data_provider; std::set<QPDFObjGen> attachment_streams; + bool reconstructed_xref; // Linearization data qpdf_offset_t first_xref_item_offset; // actual value from file |