Created attachment 831687 [details]
Stack trace of the crash

Today I received an email with an attached PDF that instantly crashed Kontact.

The email originates from a trusted source (the HR department of our
university) and contains documents I asked for, so there is no reason to
suspect a malicious attachment. The email is displayed without problems in
Thunderbird and K-9 Mail and Okular can open the attached PDF files without any
issues.

As far as I can conclude from the stack trace, Kontact tries to extract some
information from the PDF file (maybe to create a preview image?). To do this,
Kontact uses libpoppler which in turn uses libopenjpeg. Inside the method
opj_destroy_codec() of libopenjpeg a segmentation fault occurs.

The PDF file contains two scanned pages and its metadata names ���Adobe Acrobat
Pro DC 20 Paper Capture Plug-in��� as the creating application.

To make sure that the PDF file is the cause, I sent several emails to myself
with various PDF files attached. Any email that contains this specific PDF file
causes a segfault once I click on it in the message list, all other email with
other PDF files display just fine.

It may well be that there is any issue with the PDF file, but an attachment
should obviously not be able to crash the email application.

The PDF file contains private information, so I cannot add it as an attachment
to this bug report.


I am running openSUSE Leap 15.1 with all currently available updated installed.
The version numbers of the libraries involved in this issue are as follows:

- libopenjpeg: 1.5.2-lp151.3.3
- libpoppler73: 0.62.0-lp151.3.4
- KDE PIM: 18.12.3-lp151.3.1
- KDE Frameworks: 5.55.0
- Qt: 5.9.7

I attached the stack trace of the crash and will also attach a copy of the
source code of the email with all private information removed.