View Single Post
Old 11-15-2011, 04:17 PM   #66
Junior Member
Richard.Kunze began at the beginning.
Posts: 1
Karma: 10
Join Date: Nov 2011
Device: Kindle 4 non-touch
Originally Posted by yifanlu View Post
-PDF Reader. This seems like a great bet. The entire PDF library is a Java JNI library. /usr/java/lib/ and /usr/java/lib/ They are ~10MB total, so it would be easy to slip up somewhere. In addition, it is Amazon code (not open source). It also reads PDF files, a very complex file structure. There's bound to be a stack/heap/buffer overflow somewhere.
Does the PDF reader use freetype to render embedded type1 fonts in PDF files?

If so, it may be vulnerable to CVE-2011-0226 (see for an analysis of a recent iPhone jailbreak using this exploit).
Richard.Kunze is offline   Reply With Quote