python311-PyPDF2-2.11.1-4.1 on GA media (moderate)

python311-PyPDF2-2.11.1-4.1 on GA media Announcement ID: openSUSE-SU-2026:10238-1 Rating: moderate Cross-References: CVE-2025-55197 CVE-2026-27024 CVE-2026-27025 CVE-2026-27026 Affected Products: openSUSE Tumbleweed An update that solves 4 vulnerabilities can now be installed. Description: These...

CVE-2026-27026

A flaw was found in pypdf, a pure-python PDF library. A remote attacker can exploit this vulnerability by crafting a malicious PDF file containing a malformed /FlateDecode stream. This stream, which is used for data compression within the PDF, can cause excessively long processing times when...

UBUNTU-CVE-2026-27026

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

CVE-2026-27026

CVE-2026-27026 affects the Python PDF library pypdf (formerly PyPDF2) and concerns a malformed /FlateDecode stream that can trigger byte-by-byte decompression leading to excessively long processing times. Multiple connected advisories confirm the issue and note a fix released in version 6.7.1 (pe...

CVE-2026-27026

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

CVE-2026-27026 vulnerabilities

Vulnerabilities for packages: open-webui...

CVE-2026-27026 vulnerabilities

Vulnerabilities for packages: open-webui...

01os (>=0.0.5 <=0.0.13), 3m (>=0.1.0 <=0.1.3) +1823 more potentially affected by CVE-2026-27026 via pypdf (>=6.0.0 <=6.7.0)

pypdf PYPI version =6.0.0, =0.0.5, =0.1.0, =0.4.1, =0.2.5, =0.0.2, =0.2.0, =1.2.27, =0.1.0, =1.2.32, =0.2.5, =1.0.0, =0.1.1, =0.4.6 - adstoolbox =2025.12.2.2 and more Source cves: CVE-2026-27026 Source advisory: SNYK:PYTHON-PYPDF-15309551...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27026)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27026 advisory. - In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix missing reserved...

EUVD-2021-27026

Malware in sbrugna...

CVE-2025-27026

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-27026

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-27026

creationtimestamp| type| source ---|---|--- 2025-07-02 14:09:55+00:00| seen| Telegram/MobE4eJMYe6KRh7D6zNVNV-FspQyAXojClg8irg4IOf9zQ...

CVE-2025-27026 Improper Access Control Granularity impacting Infinera G42

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-27026 Improper Access Control Granularity impacting Infinera G42

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-27026

CVE-2025-27026 affects Infinera G42 version R6.1.3. A missing double‑check feature in the WebGUI CLI deactivation allows an authenticated administrator to disable multiple management interfaces across local and network access. The WebGUI‑driven CLI deactivation not only stops the CLI but also dea...

CVE-2020-27026

During boot, the device unlock interface behaves differently depending on if a fingerprint registered to the device is present. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

CVE-2024-27026

creationtimestamp| type| source ---|---|--- 2025-03-06 02:16:32+00:00| seen| Telegram/ybjJSlf-N6QlWwENbTI93pLdym84n3JXBBs8gbZpbnyU8Pi...

openSUSE Security Advisory (SUSE-SU-2024:3984-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-27026 affecting package hyperv-daemons for versions less than 6.6.35.1-1

CVE-2024-27026 affecting package hyperv-daemons for versions less than 6.6.35.1-1. An upgraded version of the package is available that resolves this issue...