mirrors/pdf.js
1
0
Fork 0
mirror of https://github.com/mozilla/pdf.js.git synced 2025-04-22 16:18:08 +02:00
Code Activity

Avoid accidentally getting the entire font file in readNameTable (issue 7020)

Browse source 
In the PDF file in question, some of the 'name' table entries have `record.length === 0`. This becomes problematic in the non-unicode case, since `font.getBytes(0)` will fetch the *entire* stream.
Given that OTS rejects 'name' entries larger than `2^16`, this thus explain the sanitizer errors.

Fixes 7020.
This commit is contained in:
Jonas Jenwald 2016-03-01 21:39:33 +01:00
parent 22341c0761
commit 505f15f221
4 changed files with 11 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
src/core/fonts.js
View file

@ -1832,6 +1832,9 @@ var Font = (function FontClosure() {
}
for (i = 0, ii = records.length; i < ii; i++) {
var record = records[i];
if (record.length <= 0) {
continue; // Nothing to process, ignoring.
}
var pos = start + stringsStart + record.offset;
if (pos + record.length > end) {
continue; // outside of name table, ignoring