5 matches found
CVE-2026-48156 vulnerabilities
Vulnerabilities for packages: open-webui, litellm...
Linux Distros Unpatched Vulnerability : CVE-2026-48156
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes...
CVE-2026-48156
creationtimestamp| type| source ---|---|--- 2026-05-28 17:30:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwkejpygx2o...
5mghost-rover (>=0.0.1 <=0.0.3), ace-framework (>=0.6.0 <=0.7.3) +94 more potentially affected by CVE-2026-48156 via pypdf (>=6.0.0 <=6.11.0)
pypdf PYPI version =6.0.0, =0.0.1, =0.6.0, =0.1.0, =0.0.2, =0.1.0, =0.0.24, =1.45.0, =0.1.2, =0.0.1.dev0, =0.0.1, =0.0.2, =0.0.5 - autopattern =0.2.0 and more Source cves: CVE-2026-48156 Source advisory: SNYK:PYTHON-PYPDF-17054920...
CVE-2026-48156
pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with /W 0 0 0 values and large /Size values. This vulnerability is fixed in 6.12.0...