Bug#836787: marked as done (jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1)

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Subject: Bug#836787: marked as done (jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 17 Sep 2016 12:16:17 +0000
Message-id: <[🔎] handler.836787.D836787.14741141053226.ackdone@bugs.debian.org>
References: <1474114086.2011.126.camel@adam-barratt.org.uk> <[🔎] 1473098784.26927.1.camel@debian.org>

Your message dated Sat, 17 Sep 2016 13:08:06 +0100
with message-id <1474114086.2011.126.camel@adam-barratt.org.uk>
and subject line Closing p-u bugs for updates in 8.6
has caused the Debian Bug report #836787,
regarding jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
836787: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836787
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1
From: "Laszlo Boszormenyi (GCS)" <gcs@debian.org>
Date: Mon, 05 Sep 2016 20:06:24 +0200
Message-id: <[🔎] 1473098784.26927.1.camel@debian.org>

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian.org@packages.debian.org
Usertags: pu

Hi Release Team,

A PyPDF2 user found a DoS, an infinite loop[1]. It has a reproducer
even. This affects Jessie as well (the Sid update is just uploaded).
Upstream fix is simple[2] and the Security Team noted this as no-dsa,
but can be updated via a Jessie PU.

Proposed patch is attached.

Thanks for considering,
Laszlo/GCS
[1] https://github.com/mstamy2/PyPDF2/issues/184
[2] https://github.com/mstamy2/PyPDF2/commit/4fc7f9d14adb2a9b890aea2616955ec54229f48c

diff -Nru pypdf2-1.23+git20141008/debian/changelog pypdf2-1.23+git20141008/debian/changelog
--- pypdf2-1.23+git20141008/debian/changelog	2014-10-25 21:00:12.000000000 +0000
+++ pypdf2-1.23+git20141008/debian/changelog	2016-09-05 17:50:32.000000000 +0000
@@ -1,3 +1,10 @@
+pypdf2 (1.23+git20141008-1+deb8u1) jessie; urgency=medium
+
+  * Backport fix 'prevent infinite loop in readObject() function' to prevent
+    DoS from upstream Git tree.
+
+ -- Laszlo Boszormenyi (GCS) <gcs@debian.org>  Mon, 05 Sep 2016 17:46:41 +0000
+
 pypdf2 (1.23+git20141008-1) unstable; urgency=low
 
   * Upstream snapshot with various bug fixes.
diff -Nru pypdf2-1.23+git20141008/debian/patches/Prevent_infinite_loop_in_readObject.patch pypdf2-1.23+git20141008/debian/patches/Prevent_infinite_loop_in_readObject.patch
--- pypdf2-1.23+git20141008/debian/patches/Prevent_infinite_loop_in_readObject.patch	1970-01-01 00:00:00.000000000 +0000
+++ pypdf2-1.23+git20141008/debian/patches/Prevent_infinite_loop_in_readObject.patch	2016-09-05 17:49:22.000000000 +0000
@@ -0,0 +1,25 @@
+From 48193975e5a0e48ebbb68217f8533ad2bfbdede2 Mon Sep 17 00:00:00 2001
+From: Henri Salo <henri.salo@nixu.com>
+Date: Tue, 18 Aug 2015 13:42:22 +0300
+Subject: [PATCH] Prevent infinite loop in readObject() function. Patch by
+ dhudson1. Closes mstamy2/PyPDF2#184
+
+---
+ PyPDF2/generic.py | 4 ++++
+ 1 file changed, 4 insertions(+)
+
+diff --git a/PyPDF2/generic.py b/PyPDF2/generic.py
+index df1e028..657612a 100644
+--- a/PyPDF2/generic.py
++++ b/PyPDF2/generic.py
+@@ -82,6 +82,10 @@ def readObject(stream, pdf):
+         # comment
+         while tok not in (b_('\r'), b_('\n')):
+             tok = stream.read(1)
++            # Prevents an infinite loop by raising an error if the stream is at
++            # the EOF
++            if len(tok) <= 0:
++                raise PdfStreamError("File ended unexpectedly.")
+         tok = readNonWhitespace(stream)
+         stream.seek(-1, 1)
+         return readObject(stream, pdf)
diff -Nru pypdf2-1.23+git20141008/debian/patches/series pypdf2-1.23+git20141008/debian/patches/series
--- pypdf2-1.23+git20141008/debian/patches/series	1970-01-01 00:00:00.000000000 +0000
+++ pypdf2-1.23+git20141008/debian/patches/series	2016-09-05 17:50:00.000000000 +0000
@@ -0,0 +1 @@
+Prevent_infinite_loop_in_readObject.patch

--- End Message ---

--- Begin Message ---

To: 807654-done@bugs.debian.org, 823794-done@bugs.debian.org, 823911-done@bugs.debian.org, 824658-done@bugs.debian.org, 825512-done@bugs.debian.org, 825534-done@bugs.debian.org, 825699-done@bugs.debian.org, 826335-done@bugs.debian.org, 826348-done@bugs.debian.org, 826429-done@bugs.debian.org, 826443-done@bugs.debian.org, 826568-done@bugs.debian.org, 826607-done@bugs.debian.org, 826622-done@bugs.debian.org, 826662-done@bugs.debian.org, 826714-done@bugs.debian.org, 826829-done@bugs.debian.org, 827046-done@bugs.debian.org, 827054-done@bugs.debian.org, 827058-done@bugs.debian.org, 827111-done@bugs.debian.org, 827113-done@bugs.debian.org, 827288-done@bugs.debian.org, 827299-done@bugs.debian.org, 827352-done@bugs.debian.org, 827781-done@bugs.debian.org, 828177-done@bugs.debian.org, 828227-done@bugs.debian.org, 828630-done@bugs.debian.org, 829130-done@bugs.debian.org, 829135-done@bugs.debian.org, 829603-done@bugs.debian.org, 829650-done@bugs.debian.org, 829735-done@bugs.debian.org, 830221-done@bugs.debian.org, 830805-done@bugs.debian.org, 831335-done@bugs.debian.org, 831426-done@bugs.debian.org, 832004-done@bugs.debian.org, 832171-done@bugs.debian.org, 832296-done@bugs.debian.org, 832336-done@bugs.debian.org, 832477-done@bugs.debian.org, 832517-done@bugs.debian.org, 833345-done@bugs.debian.org, 833421-done@bugs.debian.org, 833433-done@bugs.debian.org, 833550-done@bugs.debian.org, 833575-done@bugs.debian.org, 833595-done@bugs.debian.org, 833634-done@bugs.debian.org, 834261-done@bugs.debian.org, 834326-done@bugs.debian.org, 834327-done@bugs.debian.org, 834419-done@bugs.debian.org, 834479-done@bugs.debian.org, 834480-done@bugs.debian.org, 834482-done@bugs.debian.org, 834483-done@bugs.debian.org, 834484-done@bugs.debian.org, 834745-done@bugs.debian.org, 835443-done@bugs.debian.org, 835444-done@bugs.debian.org, 835537-done@bugs.debian.org, 836157-done@bugs.debian.org, 836592-done@bugs.debian.org, 836700-done@bugs.debian.org, 836787-done@bugs.debian.org, 836866-done@bugs.debian.org, 836910-done@bugs.debian.org, 837296-done@bugs.debian.org, 837300-done@bugs.debian.org

Subject: Closing p-u bugs for updates in 8.6

From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Date: Sat, 17 Sep 2016 13:08:06 +0100

Message-id: <1474114086.2011.126.camel@adam-barratt.org.uk>
Version: 8.6

The updates referred to in each of these bugs were included in today's
stable point release.

Regards,

Adam
--- End Message ---

Reply to:

References:
- Bug#836787: jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1
  - From: "Laszlo Boszormenyi (GCS)" <gcs@debian.org>

Prev by Date: Bug#836592: marked as done (jessie-pu: package gdcm/2.4.4-3)
Next by Date: Bug#836866: marked as done (jessie-pu: package tor/0.2.5.12-2)
Previous by thread: Processed: Re: Bug#836787: jessie-pu: package pypdf2/1.23+git20141008-1+deb8u1
Next by thread: Bug#836799: transition: ros-geometric-shapes
Index(es):
- Date
- Thread