OutOfMemoryError parsing a small plist file

[lfcnassif]

The attached 1.68KB plist file causes a 4GB int[] array allocation when parsed using dd-plist-1.23. It is possibly corrupted, but I think the library should defend itself against this to avoid DOS attacks. This was first reported at sepinf-inc/IPED#1403

Let me know if you need some other information.

Thanks in advance.
1061134322640399597.zip

[lfcnassif]

Update: this also happens with dd-plist-1.25

[3breadt]

The property list seems to be corrupted indeed. But how the library handled that file was really not optimal. Unnecessary memory allocation when parsing binary property lists has been reduced and the issue is now fixed.

[lfcnassif]

Thank you very much, this was very fast! I'll test the fix with another triggering file and report back.

[lfcnassif]

Just tested version 1.26 with another triggering file, the fix worked fine.

Thank you very much!