• Fixed pdfioPageCopy implementation to not copy the source document’s entire page tree (Issue #161)
• Fixed AES encryption dictionary name (Issue #163)
• Fixed AES owner key generation (Issue #164)
• Fixed support for empty UTF-16 strings (Issue #165)

Enjoy!

Download PDFio v1.6.3 Home Page

• Increased the maximum length of a single string to 128k (Issue #146)
• Added missing range checks to pdfioArrayCopy and pdfioDictCopy.
• Refactored PDF encryption code to fix unlocking with certain files.
• Improved xref table loop detection (Issue #148)
• Changed how duplicate objects are handled in PDF files (Issue #155)
• Fixed xref reconstruction for objects lacking a Type value.
• Fixed pdfioPageOpenStream for indirect Contents arrays.
• Fixed an error propagation bug when reading too-long values (Issue #146)
• Fixed a bug when converting Unicode characters above plane 0 (issue #159)
• Fixed a Clang warning.

Enjoy!

Download PDFio v1.6.2 Home Page

• Fixed a regression in list handling that caused a crash for empty list items (Issue #553)
• Fixed a regression in the number of rendered table of contents levels in PDF and PostScript output (Issue #554)

Binaries are available from Github for Windows 10+ and macOS 11+, and through the Snapcraft store for Linux.

Enjoy!

Download HTMLDOC 1.9.23 Install HTMLDOC 1.9.23 Snap Home Page

Unfortunately, the software security industry has created an environment where CVEs (Common Vulnerabilities and Exposures) have become an economic driver. Researchers seem to increasingly need published CVEs or bug bounties to justify the time they spend trying to break software in new and interesting ways.

This has predictably led to more software bugs being reported as critical security vulnerabilities, with push-back and frustration from developers when those bugs are either not exploitable or not in that software at all! In addition, many issues are discovered and reported automatically (“AI”, “fuzzing”, etc.) without sufficient investigation/analysis by the reporter. Finally, security updates trigger an emergency response for everyone involved, causing further disruption to the software development process. Thus, it is important to clearly identify which bugs rate a CVE and which ones are ordinary bugs.

Bugs vs. Vulnerabilities

CVE defines a vulnerability as a weakness in software or hardware components that can be exploited. In addition, there is a list of common weaknesses that provide guidance on which bugs get CVEs and which bugs don’t, and you are expected to connect a weakness to an actual, exploitable vulnerability or exposure before filing a CVE. Unfortunately, CWEs are often applied overly broadly to justify why a bug should be treated as the most serious of security issues, e.g.:

• This critical issue exposes CWE-999 and must be assigned a CVE or given a bug bounty!

One common over-application of CWEs is for so-called Denial of Service (DoS) vulnerabilities in software that does not provide a service - you can’t deny something that doesn’t exist. I’ve had reporters argue that, “my server uses this library and the bug in this library causes a denial of service for my server”, however it is the responsibility of the server to protect against DoS attacks, not a subordinate library, because only the server knows what is an appropriate use of memory, CPU, time, and other resources.

Note: I’m not talking about issues that cause a crash in a library due to buffer overflow/underflow, divide by 0, etc. While there are ways to mitigate such risks, those sorts of issues can be exploitable in unpredictable ways and need to be assigned CVEs for something other than a Denial of Service vulnerability. Running out of memory or taking a long time to perform an operation because you load a large file is not a CVE.

I also sometimes see security reports for incorrect API usage such as passing NULL pointers where such pointers are not allowed, passing the wrong kinds of pointers or objects to an API, or using an unstable (private) API. These are not vulnerabilities in the API because they are not caused by an attacker but by the developer. They are also not exploitable as defined for CVEs, although the application itself might be exploitable.

Identifying weaknesses is important, but so is determining whether a weakness can be exploited and what the scope of the vulnerability and exposure is. If a weakness requires playing a game of Fizzbin or is simply not exploitable, then it is not a vulnerability and does not get a CVE.

Sometimes a bug is just a bug.

• Added configure script for better build system compatibility.
• Added ttfCache functions to access user- and system-installed fonts (Issue #5)
• Added ttfCreateData function to create a font from a memory buffer.
• Added ttfContainsChar and ttfContainsChars functions to determine whether a font contains the necessary characters (Issue #2)
• Added ttfGetKernedExtents function to get kerned extents (Issue #6)
• Added guards against fonts claiming they have 0 characters.
• Added stddef.h include to ttf.h.
• Added support for more kinds of TrueType/OpenType fonts.
• Fixed range checking in ttfGetExtents (Issue #9)
• Fixed potential heap/integer overflow issues in the TrueType cmap code.
• Fixed underflow in TrueType cmap code.

Enjoy!

Download TTF v1.1.0 Home Page Github Project

• Added a “–without-http” configure option to build without CUPS HTTP/HTTPS support (Issue #547)
• Updated HTTP/HTTPS support to work with both CUPS 2.x and 3.x.
• Updated the maximum image dimension to prevent integer overflow on 32-bit platforms (Issue #550)
• Updated the HTML parser to correctly report the line number of errors in files with more than 2^32-1 lines (Issue #551)
• Fixed a crash bug with certain markdown files (Issue #548)
• Fixed an unrestricted recursion bug when reading and formatting HTML (Issue #552)

Binaries are available from Github for Windows 10+ and macOS 11+, and through the Snapcraft store for Linux.

Enjoy!

Download HTMLDOC 1.9.22 Install HTMLDOC 1.9.22 Snap Home Page

• Changed the preferred/first printer URI to use the “ipps” scheme.
• Updated the USB serial number code to better support non-compliant printers such as those from DYMO (Issue #396)
• Now show the default and supported “output-bin” options (Issue #393)
• Now suppress a duplicate ‘auto’ value for “media-source-supported” to work around a bug in the legacy-printer-app (Issue #394)
• Now log the TLS version and cipher suite, when available.
• Now create spool files with read-only permissions.
• Now support setting “media-ready” with the modify sub-command (Issue #395)
• Fixed attribute copying issue from multiple client threads (Issue #390)
• Fixed driver validation for raw printing (Issue #391)
• Fixed PNG looping issue (Issue #398)
• Fixed default IPv6 listener (Issue #401)
• Fixed builds against the latest libcups (Issue #403)
• Fixed a deadlock issue in the web interface (Issue #406)

Enjoy!

Download PAPPL v1.4.10 Home Page

• Added missing input checking to pdfioFileCreateFontObjFromBase function.
• Updated support for UTF-16 strings (Issue #141)
• Updated Xcode project to use installed PNG library.
• Fixed decryption of PDF files using an Encrypt dictionary instead of an indirect reference (Issue #139)
• Fixed character range checking in a TTF support function.
• Fixed some clang warnings.
• Fixed the generated pkg-config file.

Enjoy!

Download PDFio v1.6.1 Home Page

• Added -v option to stringsutil report sub-command to show unlocalized strings.
• Added Windows API support to the sfSetLocale function.
• Updated the output from stringsutil translate to better show progress.
• Updated code to work with latest CUPS 2.5/3.0.
• Fixed a crash bug in stringsutil report when checking format strings.

Enjoy!

Download StringsUtil v1.2 Home Page Github Project

• Added generation of XMP metadata when writing PDFs (Issue #103)
• Added “standard” PDFIO_CS_CGATS001 color space for non-device CMYK (Issue #104)
• Added CMYK JPEG support with embedded ICC profiles or using the CGATS001 profile (Issue #104)
• Added pdfioFileAddOutputIntent function to adding output intent information to a PDF file (Issue #104)
• Added explicit support for warning messages (Issue #118)
• Added pdfioFileCreateFontObjFromData function for embedding fonts in memory (Issue #120)
• Added support for specifying PDF/A versions for created PDF files (Issue #122)
• Added pdfioContentBeginMarked and pdfioContentEndMarked functions for creating tagged PDF content (Issue #123)
• Added pdfioFileGetLanguage and pdfioFileSetLanguage functions for getting and setting the default/primary language of a PDF file (Issue #124)
• Now add default grayscale, RGB, and CMYK profile resources to pages as needed (Issue #104)
• Fixed unsupported filter error (Issue #130)
• Fixed EOF comment written to the PDF (Issue #136)
• Fixed TTF cmap underflow error.
• Fixed some Clang warnings.

Enjoy!

Download PDFio v1.6.0 Home Page