The application does not validate the presence of required appearance (AP) data before accessing...

Summary

The application does not validate the presence of required appearance (AP) data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code continues to dereference the associated object without a prior null or validity check, which allows a crafted document to trigger a null pointer dereference and crash the application, resulting in denial of service.

Metadata

Article ID

#480297

Source

GitHub Advisory Database

Scraped At

4/1/2026, 6:10:20 AM

URL Hash

4626a19ba56e5105…