June 15, 2018
View dab42eb

Updating 0.100.1 release notes.

Micah Snyder (micasnyd) authored on 2018/06/15 03:15:21
June 13, 2018
View 399a357

Replacing strntol with strntoul to ensure proper (un)signedness when parsing numbers from PDFs.

Micah Snyder authored on 2018/06/13 09:47:21
June 9, 2018
View 0707bd4

Adjustment to pdf find_obj logic to allow the parser to skip, continue when it finds objects that cannot be parsed and may not in fact be objects at all.

Micah Snyder authored on 2018/06/09 22:42:57
View aca885e

Uncommenting len adjustment that is clearly correct, needed.

Micah Snyder authored on 2018/06/09 03:17:04
View da49904

bb12134: Adding missing len decrement and adding additional len check.

Micah Snyder (micasnyd) authored on 2018/06/09 02:13:13
June 7, 2018
View b9c9fc2

100.1 - rar - reverting and fixing issues found with changes found to rar extraction during regression.

Mickey Sola authored on 2018/06/07 22:58:04
June 3, 2018
View cca130b

bb12133: Wrapping cli_strntol to provide easy error detection. Applying cli_strntol_wrap with error checking. Adding logic to identify when a parsing error is in fact a new revision of the PDF.

Micah Snyder authored on 2018/06/03 09:58:35
June 2, 2018
View 56911ba

bb12133: Implementing cli_strntol based on gnu gcc's strtol implementation with modifications to limit string buffer length for non-null terminated strings. Using cli_strntol in pdf.c for added safety.

Micah Snyder authored on 2018/06/02 03:23:25
May 31, 2018
View b8f37dd

Adjusting HWP offset check to account for the possibility of a zero-cell or zero-line situation.

Micah Snyder (micasnyd) authored on 2018/05/31 01:03:32
May 25, 2018
View e5bbf93

Replacing debug log that was accidentally removed by the previous commit.

Micah Snyder authored on 2018/05/25 04:12:15
View 7b0b217

bb12122: improving bounds checking in a more intuitive way, and adding additional check that I missed earlier.

Micah Snyder authored on 2018/05/25 01:40:42
View 2a87601

Patch from libxml2 upstream, 899a5d9f0ed13b8e32449a08a361e0de127dd961. Detect infinite recursion in parameter entities. When expanding a parameter entity in a DTD, infinite recursion could lead to an infinite loop or memory exhaustion.

Micah Snyder (micasnyd) authored on 2018/05/25 08:04:22
View 7b87a24

bb12059 - 100.1 - fixing potential buffer reads based on values from unintialized vars when unpacking rar files

Mickey Sola authored on 2018/05/25 06:05:29
View b8c4cf6

bb12107 - 100.1 - fixing oob heap read in mspack

Mickey Sola authored on 2018/05/25 06:04:15
May 22, 2018
View 240ea9f

bb12122: Adding checks to validate offsets parsed from file.

Micah Snyder authored on 2018/05/22 05:58:51