core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp - Issue 501823003: Perform better input checks in early steps of parser.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp

Issue 501823003: Perform better input checks in early steps of parser. (Closed) Base URL: https://pdfium.googlesource.com/pdfium.git@master

Patch Set: Fix || => && typo. Created 6 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp

diff --git a/core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp b/core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp

index e0fd3bfaeecea13e1b023d68982f3d35897ff2b9..a597ea0a081247db3e0b5f48b280d79c31b96760 100644

--- a/core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp

+++ b/core/src/fpdfapi/fpdf_parser/fpdf_parser_parser.cpp

@@ -51,6 +51,7 @@ CPDF_Parser::CPDF_Parser()

m_dwFirstPageNo = 0;

m_dwXrefStartObjNum = 0;

m_bOwnFileRead = TRUE;

+ m_FileVersion = 0;

m_bForceUseSecurityHandler = FALSE;

}

CPDF_Parser::~CPDF_Parser()

@@ -158,10 +159,21 @@ FX_DWORD CPDF_Parser::StartParse(IFX_FileRead* pFileAccess, FX_BOOL bReParse, FX

}

m_Syntax.InitParser(pFileAccess, offset);

FX_BYTE ch;

- m_Syntax.GetCharAt(5, ch);

- m_FileVersion = (ch - '0') * 10;

- m_Syntax.GetCharAt(7, ch);

- m_FileVersion += ch - '0';

+ if (!m_Syntax.GetCharAt(5, ch)) {

+ return PDFPARSE_ERROR_FORMAT;

+ }

+ if (ch >= '0' && ch <= '9') {

+ m_FileVersion = (ch - '0') * 10;

+ }

+ if (!m_Syntax.GetCharAt(7, ch)) {

+ return PDFPARSE_ERROR_FORMAT;

+ }

+ if (ch >= '0' && ch <= '9') {

+ m_FileVersion += ch - '0';

+ }

+ if (m_Syntax.m_FileLen < m_Syntax.m_HeaderOffset + 9) {

+ return PDFPARSE_ERROR_FORMAT;

+ }

m_Syntax.RestorePos(m_Syntax.m_FileLen - m_Syntax.m_HeaderOffset - 9);

if (!bReParse) {

m_pDocument = FX_NEW CPDF_Document(this);

« no previous file with comments | « no previous file | no next file » | no next file with comments »