Lucene search
K

155 matches found

Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.7 views

PT-2026-35989

Name of the Vulnerable Software and Affected Versions PDFunite version 0.41.0 Description A buffer overflow allows local attackers to crash the application by processing malformed PDF files during merge operations. A segmentation fault can be triggered in the XRef::getEntry function within...

6.9CVSS6AI score0.00177EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/04/25 11:4 a.m.4 views

CVE-2026-41168

A flaw was found in pypdf. An attacker can craft a malicious PDF file containing oversized cross-reference streams or object streams. Processing such a file can lead to excessively long runtimes, resulting in a Denial of Service DoS for applications using the pypdf library. Mitigation Mitigation...

6.9CVSS5.1AI score0.00297EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/04/24 1:28 a.m.12 views

SUSE CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References3
NVD
NVD
added 2026/04/22 9:17 p.m.5 views

CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS0.00297EPSS
Exploits0References4
OSV
OSV
added 2026/04/22 9:17 p.m.6 views

DEBIAN-CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

5.3CVSS5.3AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/22 8:49 p.m.29 views

CVE-2026-41168 pypdf has possible long runtimes for wrong size values in cross-reference and object streams

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS0.00297EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/22 8:49 p.m.4 views

CVE-2026-41168 pypdf has possible long runtimes for wrong size values in cross-reference and object streams

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/22 8:49 p.m.6 views

EUVD-2026-25100

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 8:49 p.m.18 views

CVE-2026-41168

Summary: CVE-2026-41168 affects the Python PDF library pypdf

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/04/15 7:43 p.m.4 views

Improper Validation of Specified Quantity in Input

Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input through the PdfReader object stream and xref stream parsers in pypdf/reader.py...

7.1CVSS5.8AI score0.00297EPSS
Exploits0References3
OSV
OSV
added 2026/04/15 7:43 p.m.3 views

GHSA-JJ6C-8H6C-HPPX pypdf has long runtimes for wrong size values in cross-reference and object streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. Patches This has been fixed in pypdf==6.10.1. Workarounds If you cannot upgrade yet,...

5.3CVSS5.7AI score0.00297EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/04/15 7:43 p.m.22 views

pypdf has long runtimes for wrong size values in cross-reference and object streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. Patches This has been fixed in pypdf==6.10.1. Workarounds If you cannot upgrade yet,...

6.9CVSS5.7AI score0.00297EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.5 views

PT-2026-34562

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.10.1 Description A flaw in the pure-python PDF library allows an attacker to craft a PDF that results in long runtimes. This is achieved by using cross-reference streams with incorrect large /Size values or object...

6.9CVSS5.1AI score0.00297EPSS
Exploits0References17
GithubExploit
GithubExploit
added 2026/04/13 2:55 a.m.132 views

sigma-audit

Sigma Stack Audit Full-spectrum security audit combining five...

9.1CVSS5.8AI score0.99621EPSS
Exploits58
SUSE CVE
SUSE CVE
added 2026/03/19 12:27 a.m.4 views

SUSE CVE-2026-23249

In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and inode btree repair functions will rebuild both btrees at the same time, after which it needs to evaluate both btrees to confirm that the corruptions a...

5.7AI score0.00141EPSS
Exploits0References3
NVD
NVD
added 2026/03/18 6:16 p.m.4 views

CVE-2026-23249

In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and inode btree repair functions will rebuild both btrees at the same time, after which it needs to evaluate both btrees to confirm that the corruptions a...

5.5CVSS0.00141EPSS
Exploits0References4
OSV
OSV
added 2026/03/18 6:16 p.m.6 views

UBUNTU-CVE-2026-23249

In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and inode btree repair functions will rebuild both btrees at the same time, after which it needs to evaluate both btrees to confirm that the corruptions a...

5.5CVSS5.7AI score0.00141EPSS
Exploits0References13
ATTACKERKB
ATTACKERKB
added 2026/03/18 5:1 p.m.6 views

CVE-2026-23249

In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and inode btree repair functions will rebuild both btrees at the same time, after which it needs to evaluate both btrees to confirm that the corruptions a...

5.6AI score0.00141EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/08 12:0 a.m.5 views

openSUSE 16 Security Update : python-PyPDF2 (openSUSE-SU-2026:20333-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20333-1 advisory. Changes in python-PyPDF2: - CVE-2026-27628: Fixed infinite loop when loading circular /Prev entries in cross-reference streams bsc1258940 -...

8.7CVSS7.1AI score0.00408EPSS
Exploits1References18
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/07 12:0 a.m.6 views

Security update for python-PyPDF2 (important)

openSUSE security update: security update for python-pypdf2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20333-1 Rating: important References: bsc1248089 bsc1258691 bsc1258692 bsc1258693 bsc1258934 bsc1258940 Cross-References: CVE-2025-55197...

6.9CVSS5.8AI score0.00408EPSS
Exploits1References6
Rows per page
Query Builder