OPENSUSE-SU-2026:10464-1 python311-pypdf-6.9.2-1.1 on GA media

These are all security issues fixed in the python311-pypdf-6.9.2-1.1 package on the GA media of openSUSE Tumbleweed...

Infinite loop

Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Infinite loop in the readfromstream function of DictionaryObject. An attacker can cause the application to enter an infinite loop ...

CVE-2026-32523 WordPress WPJAM Basic plugin <= 6.9.2 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in denishua WPJAM Basic wpjam-basic allows Using Malicious Files.This issue affects WPJAM Basic: from n/a through = 6.9.2...

PT-2026-28037

Unrestricted Upload of File with Dangerous Type vulnerability in denishua WPJAM Basic wpjam-basic allows Using Malicious Files.This issue affects WPJAM Basic: from n/a through = 6.9.2...

SourceForge QaTraq 安全漏洞

SourceForge QaTraq is an open source test management tool from SourceForge. A security vulnerability exists in SourceForge QaTraq version 6.9.2 that stems from enabling administrative account credentials by default, which could result in gaining administrative privileges...

CVE-2023-51503

Authorization Bypass Through User-Controlled Key vulnerability in Automattic WooPayments – Fully Integrated Solution Built and Supported by Woo.This issue affects WooPayments – Fully Integrated Solution Built and Supported by Woo: from n/a through 6.9.2...

Enpass Password Manager 安全漏洞

Enpass Password Manager is a cross-platform offline password manager from Enpass. A security vulnerability exists in Enpass Password Manager version 6.9.2, which stems from an HTML injection vulnerability that allows an attacker to run arbitrary HTML code by creating carefully crafted comments...

CVE-2023-51503

Authorization Bypass Through User-Controlled Key vulnerability in Automattic WooPayments – Fully Integrated Solution Built and Supported by Woo.This issue affects WooPayments – Fully Integrated Solution Built and Supported by Woo: from n/a through 6.9.2...

acymailing, 6.9.2,Other

acymailing, 6.9.2,Other Update to version 6.9.2 Developer did not inform the VEL team...

Oniguruma Null Pointer Dereference Vulnerability

Oniguruma is a BSD-licensed regular expression library that supports multiple character encodings. A null pointer dereference vulnerability exists in matchat in regexec.c in Oniguruma 6.9.2, which can be exploited by an attacker to cause a denial of service by supplying a specially crafted regula...

DEBIAN-CVE-2015-8897

The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service application crash via a crafted png file...