From our private mailinglist reported by Tim Allison:
Tobias Ospelt has been working with fuzzing to identify oom/infinite loops. Tobias' attached file triggers a really long running loop which eventually leads to an OOM. It looks like this loop is the problem in AFMParser's readLine():
Description: A carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.
Mitigation: update to a more recent version