PyMuPDF 安全漏洞

PyMuPDF is an open-source, high-performance Python library for data extraction, analysis, conversion, and manipulation of PDF documents. Version 1.26.5 of PyMuPDF contains a security vulnerability, which stems from the embedded get function in main.py, allowing for path traversal and arbitrary fi...

Linux Distros Unpatched Vulnerability : CVE-2026-3029

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A path traversal and arbitrary file write vulnerability exist in the embedded get function in 'main.py' in PyMuPDF version, 1.26.5. CVE-2026-3029 Note that Ness...

Fedora: Security Advisory (FEDORA-2026-c06fd97a53)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : mupdf / python-PyMuPDF / qpdfview / zathura-pdf-mupdf (2026-c06fd97a53)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-c06fd97a53 advisory. mupdf 1.27.1 and dependencies Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

PyMuPDF path traversal and arbitrary file write vulnerabilities

Overview A path traversal vulnerability leading to arbitrary file write exist in PyMuPDF version 1.26.5, within the ‘embeddedget’ function in ‘main.py’. This vulnerability is caused by improper handling of untrusted embedded file metadata, which is used directly as an output path, enabling...

PT-2026-26304

Name of the Vulnerable Software and Affected Versions PyMuPDF version 1.26.5 Description A path traversal and arbitrary file write issue exists in the get function within the ' main .py' file. The issue allows unauthorized access and modification of files. Recommendations At the moment, there is ...

42towels (>=0.1.1001 <=0.1.1011), aait (>=0.0.4.80 <=2.3.14) +209 more potentially affected by CVE-2025-55780 via pymupdf (>=1.24.0 <=1.26.7)

pymupdf PYPI version =1.24.0, =0.1.1001, =0.0.4.80, =0.1.3, =0.1.31, =0.1.0, =0.0.5, =0.1.0, =0.1.1, =0.2.0, =0.11.0, =0.0.3, =0.1.178 - boschrpamagicbox =0.2.115 and more Source cves: CVE-2025-55780 Source advisory: SNYK:PYTHON-PYMUPDF-13058632...

NULL Pointer Dereference

Overview PyMuPDF is an A high performance Python library for data extraction, analysis, conversion & manipulation of PDF and other documents. Affected versions of this package are vulnerable to NULL Pointer Dereference via the breakwordforoverflowwrap function when rendering a malformed EPUB...

42towels (>=0.1.1001 <=0.1.1011), aait (>=0.0.4.80 <=2.3.14) +254 more potentially affected by CVE-2025-46206 via pymupdf (>=1.16.14 <=1.25.5)

pymupdf PYPI version =1.16.14, =0.1.1001, =0.0.4.80, =0.7.0, =0.0.1, =0.1.31, =0.0.5, =0.0.3.20, =0.0.1, =1.5.0, =1.2.3, =0.7.0b20230331, =0.7.0b20230307, =0.0.2, =0.1.2 and more Source cves: CVE-2025-46206 Source advisory: SNYK:PYTHON-PYMUPDF-12672499...

dodfminer (>=1.1.0 <=1.3.12rc6), nafigator (>=0.1.54 <=0.1.55) +3 more potentially affected by CVE-2020-26683 via pymupdf (>=1.16.14 <=1.17.0)

pymupdf PYPI version =1.16.14, =1.1.0, =0.1.54, =0.1.0, =2.0.9, =0.1.20, =0.1.29 Source cves: CVE-2020-26683 Source advisory: SNYK:PYTHON-PYMUPDF-12704824...

Missing Release of Memory after Effective Lifetime

Overview PyMuPDF is an A high performance Python library for data extraction, analysis, conversion & manipulation of PDF and other documents. Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime through the /pdf/pdf-font-add.c component. An attack...

Fedora: Security Advisory for python-PyMuPDF (FEDORA-2022-6746739d52)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 36 Update: python-PyMuPDF-1.19.5-2.fc36

This is PyMuPDF, a Python binding for MuPDF - a lightweight PDF and XPS viewer. MuPDF can access files in PDF, XPS, OpenXPS, epub, comic and fiction book formats, and it is known for its top performance and high rendering quality. With PyMuPDF you therefore can also access files with extensions...

Fedora: Security Advisory for python-PyMuPDF (FEDORA-2021-e1d8a99caa)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: python-PyMuPDF-1.19.1-1.fc34

This is PyMuPDF, a Python binding for MuPDF - a lightweight PDF and XPS viewer. MuPDF can access files in PDF, XPS, OpenXPS, epub, comic and fiction book formats, and it is known for its top performance and high rendering quality. With PyMuPDF you therefore can also access files with extensions...

Fedora: Security Advisory for python-PyMuPDF (FEDORA-2021-baeaa7bccb)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 32 : mupdf / python-PyMuPDF / zathura-pdf-mupdf (2021-d8e6f014e5)

The remote Fedora 32 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-d8e6f014e5 advisory. - A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory corruption and other potential consequences...

Fedora 33 : mupdf / python-PyMuPDF / zathura-pdf-mupdf (2021-572bb0f886)

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-572bb0f886 advisory. - A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory corruption and other potential consequences...

Fedora: Security Advisory for python-PyMuPDF (FEDORA-2021-d8e6f014e5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python-PyMuPDF (FEDORA-2021-572bb0f886)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...