File qpdf-CVE-2022-34503.patch of Package qpdf.25220

Index: qpdf-8.0.2/libqpdf/QPDF.cc
===================================================================
--- qpdf-8.0.2.orig/libqpdf/QPDF.cc
+++ qpdf-8.0.2/libqpdf/QPDF.cc
@@ -947,6 +947,13 @@ QPDF::processXRefStream(qpdf_offset_t xr
                           "Cross-reference stream's /W contains"
                           " impossibly large values");
         }
+        if (W[i] < 0)
+        {
+            throw QPDFExc(qpdf_e_damaged_pdf, this->m->file->getName(),
+                          "xref stream", xref_offset,
+                          "Cross-reference stream's /W contains"
+                          " negative values");
+        }
 	entry_size += W[i];
     }
     if (entry_size == 0)

Places

File qpdf-CVE-2022-34503.patch of Package qpdf.25220

Places