diff options
author | Ryan Harrison <rharrison@chromium.org> | 2018-08-03 19:45:26 +0000 |
---|---|---|
committer | Chromium commit bot <commit-bot@chromium.org> | 2018-08-03 19:45:26 +0000 |
commit | e819c2057ffdea90fef40d5801aec22ecd8571cd (patch) | |
tree | 778870a39298b26d70de17bfcc3c2a76202601fb /fpdfsdk | |
parent | 2958a8faf500b9c01ca968ee46fe89795eafe2a7 (diff) | |
download | pdfium-e819c2057ffdea90fef40d5801aec22ecd8571cd.tar.xz |
Make CFX_XMLParser less permissive
Currently the parser will accept arbitrary garbage before the first
element begins. This is causing issues with ClusterFuzz since it
generates a lot of trash inputs which take a long time to parse
inspite of being invalid.
This CL adds in a check of how deep the parse is when dealing with
text, and if it is at the top level scope, then only accept the
beginning of the root node.
BUG=chromium:863098
Change-Id: Ie45114ecf488f7e8a68a120d153033c7089d5cdc
Reviewed-on: https://pdfium-review.googlesource.com/39470
Commit-Queue: Ryan Harrison <rharrison@chromium.org>
Reviewed-by: Henrique Nakashima <hnakashima@chromium.org>
Reviewed-by: Tom Sepez <tsepez@chromium.org>
Diffstat (limited to 'fpdfsdk')
0 files changed, 0 insertions, 0 deletions