pool/python-PyPDF2
SHA256
17
0
Fork 2
Code Issues Pull Requests Activity
Files
factory
python-PyPDF2/CVE-2026-27024.patch
Simon Lees dc93183e5e I did not manage to run the testsuite (many tests needing internet), but the tests added by the patches were fine 
- Add security patches:
  * CVE-2025-55197.patch (bsc#1248089)
  * CVE-2026-27024.patch (bsc#1258691)
  * CVE-2026-27025.patch (bsc#1258692)
  * CVE-2026-27026.patch (bsc#1258693)

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-PyPDF2?expand=0&rev=26
2026-02-23 11:32:38 +00:00

59 lines
2.4 KiB
Diff
Raw Permalink Blame History

From bd2f6d052fe5941e85e37082c2a43453d48d1295 Mon Sep 17 00:00:00 2001
From: Stefan <96178532+stefan6419846@users.noreply.github.com>
Date: Tue, 17 Feb 2026 17:51:28 +0100
Subject: [PATCH] SEC: Detect cyclic references when accessing
TreeObject.children (#3645)
---
PyPDF2/generic/_data_structures.py | 11 ++++++++++-
tests/generic/test_data_structures.py | 18 ++++++++++++++++--
2 files changed, 26 insertions(+), 3 deletions(-)
Index: PyPDF2-2.11.1/PyPDF2/generic/_data_structures.py
===================================================================
--- PyPDF2-2.11.1.orig/PyPDF2/generic/_data_structures.py
+++ PyPDF2-2.11.1/PyPDF2/generic/_data_structures.py
@@ -372,10 +372,19 @@ class TreeObject(DictionaryObject):
return
child_ref = self[NameObject("/First")]
+ last = self[NameObject("/Last")]
child = child_ref.get_object()
+ visited: set[int] = set()
while True:
+ child_id = id(child)
+ if child_id in visited:
+ logger_warning(f"Detected cycle in outline structure for {child}", __name__)
+ return
+ visited.add(child_id)
+
yield child
- if child == self[NameObject("/Last")]:
+
+ if child == last:
return
child_ref = child.get(NameObject("/Next")) # type: ignore
if child_ref is None:
Index: PyPDF2-2.11.1/tests/test_generic.py
===================================================================
--- PyPDF2-2.11.1.orig/tests/test_generic.py
+++ PyPDF2-2.11.1/tests/test_generic.py
@@ -918,3 +918,17 @@ def test_create_string_object_force():
)
def test_float_object_decimal_to_string(value, expected):
assert repr(FloatObject(value)) == expected
+
+
+def test_tree_object__cyclic_reference(caplog):
+ writer = PdfWriter()
+ child1 = writer._add_object(DictionaryObject())
+ child2 = writer._add_object(DictionaryObject({NameObject("/Next"): child1}))
+ child3 = writer._add_object(DictionaryObject({NameObject("/Next"): child2}))
+ child1.get_object()[NameObject("/Next")] = child3
+ tree = TreeObject()
+ tree[NameObject("/First")] = child2
+ tree[NameObject("/Last")] = writer._add_object(DictionaryObject())
+
+ assert list(tree.children()) == [child2.get_object(), child1.get_object(), child3.get_object()]
+ assert "Detected cycle in outline structure for " in caplog.text
Reference in New Issue View Git Blame Copy Permalink