4 matches found
python311-pypdf-6.13.0-1.1 on GA media (moderate)
python311-pypdf-6.13.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10974-1 Rating: moderate Cross-References: CVE-2026-48155 CVE-2026-48735 Affected Products: openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. Description: These are all security issues fixed i...
Linux Distros Unpatched Vulnerability : CVE-2026-48735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory...
5mghost-rover (>=0.0.1 <=0.0.3), ace-framework (>=0.6.0 <=0.7.3) +98 more potentially affected by CVE-2026-48735 via pypdf (>=6.0.0 <=6.11.0)
pypdf PYPI version =6.0.0, =0.0.1, =0.6.0, =0.1.0, =0.0.2, =0.1.0, =0.0.24, =1.45.0, =0.1.2, =0.0.1.dev0, =0.0.1, =0.0.2, =0.0.5 - autopattern =0.2.0 and more Source cves: CVE-2026-48735 Source advisory: SNYK:PYTHON-PYPDF-17054918...
CVE-2026-48735
pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing large XMP metadata, possibly with lots of unnecessary elements. This vulnerability is fixed in 6.12.1...