New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 162153 link

Starred by 1 user

Issue metadata

Status: Fixed
Owner:
Email to this user bounced
Closed: Dec 2012
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: All
Pri: 1
Type: Bug-Security



Sign in to add a comment

PDF: bad cast if root page is not a dictionary object

Reported by scarybea...@gmail.com, Nov 21 2012

Issue description

Credit: Mateusz Jurczyk, with contributions by Gynvael Coldwind, both from Google Security Team.

Repro attached.

 
1651.pdf.asan.3a.1173
23.9 KB Download
Summary: PDF: bad cast if root page is not a dictionary object
Labels: -Restrict-View-SecurityTeam Restrict-View-SecurityNotify Merge-Approved
Status: FixUnreleased
PDF r2000 (yayyy!!)
Cc: emily.zh...@gmail.com
Cc: mjurczyk@google.com
Labels: -Mstone-23 -Merge-Approved Mstone-24 Merge-Merged
M24: r2040
Labels: Release-0

Comment 7 by jsc...@chromium.org, Dec 20 2012

Status: Fixed
Labels: CVE-2013-0828
Project Member

Comment 9 by bugdroid1@chromium.org, Mar 10 2013

Labels: -Type-Security -SecSeverity-High -SecImpacts-Stable -SecImpacts-Beta -Mstone-24 -Feature-PDF Cr-Content-Plugins-PDF Security-Impact-Stable Security-Impact-Beta M-24 Security-Severity-High Type-Bug-Security
Labels: -Restrict-View-SecurityNotify
Project Member

Comment 11 by bugdroid1@chromium.org, Mar 21 2013

Labels: -Security-Severity-High Security_Severity-High
Project Member

Comment 12 by bugdroid1@chromium.org, Mar 21 2013

Labels: -Security-Impact-Stable Security_Impact-Stable
Project Member

Comment 13 by bugdroid1@chromium.org, Mar 21 2013

Labels: -Security-Impact-Beta Security_Impact-Beta
Project Member

Comment 14 by bugdroid1@chromium.org, Apr 5 2013

Labels: Cr-Blink
Project Member

Comment 15 by bugdroid1@chromium.org, Apr 6 2013

Labels: -Cr-Content-Plugins-PDF Cr-Internals-Plugins-PDF
Project Member

Comment 16 by sheriffbot@chromium.org, Jun 14 2016

Labels: -security_impact-beta
Project Member

Comment 17 by sheriffbot@chromium.org, Oct 1 2016

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 18 by sheriffbot@chromium.org, Oct 2 2016

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Labels: allpublic
Labels: CVE_description-submitted
Project Member

Comment 21 by sheriffbot@chromium.org, Jul 29

Labels: -Pri-0 Pri-1

Sign in to add a comment