An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.Referenceshttps://forum.xpdfreader.com/viewtopic.php?f=3&t=605
