OESA-2021-1160
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1160
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2021-1160.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2021-1160
- Upstream
- Published
- 2021-05-06T11:02:51Z
- Modified
- 2025-08-12T05:07:50.331158Z
- Summary
- pdfbox security update
- Details
-
Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is published under the Apache License v2.0.
Security Fix(es):
A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.(CVE-2021-27807)
A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.(CVE-2021-27906)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:20.03-LTS-SP1 / pdfbox
Package
- Name
- pdfbox
- Purl
- pkg:rpm/openEuler/pdfbox&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.0.23-1.oe1
Ecosystem specific
{
"src": [
"pdfbox-2.0.23-1.oe1.src.rpm"
],
"noarch": [
"xmpbox-2.0.23-1.oe1.noarch.rpm",
"fontbox-2.0.23-1.oe1.noarch.rpm",
"pdfbox-2.0.23-1.oe1.noarch.rpm",
"preflight-2.0.23-1.oe1.noarch.rpm",
"pdfbox-javadoc-2.0.23-1.oe1.noarch.rpm",
"pdfbox-debugger-2.0.23-1.oe1.noarch.rpm",
"pdfbox-reactor-2.0.23-1.oe1.noarch.rpm",
"pdfbox-parent-2.0.23-1.oe1.noarch.rpm",
"pdfbox-tools-2.0.23-1.oe1.noarch.rpm"
]
}