Lucene search
+L

9 matches found

OSV
OSV
added 2023/09/11 1:7 p.m.9 views

MGASA-2023-0254 Updated python-pypdf2 packages fix security vulnerability

It was discovered that python-pypdf2 contained a vulnerability whereby an attacker can craft a PDF which leads to unexpected long runtime. CVE-2023-36810...

6.5CVSS6.3AI score0.00625EPSS
Exploits1References3
Mageia
Mageia
added 2023/09/11 1:7 p.m.60 views

Updated python-pypdf2 packages fix security vulnerability

It was discovered that python-pypdf2 contained a vulnerability whereby an attacker can craft a PDF which leads to unexpected long runtime. CVE-2023-36810...

6.5CVSS6.9AI score0.00625EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2023-0254)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.00625EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/08/11 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-6280-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.00625EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/08/10 12:0 a.m.21 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : PyPDF2 vulnerability (USN-6280-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6280-1 advisory. It was discovered that PyPDF2 incorrectly handled PDF files with certain markers. If a user or automated system were tricked...

6.5CVSS6.9AI score0.00625EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/15 12:0 a.m.21 views

Debian dla-3497 : python-pypdf2 - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3497 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3497-1 [email protected] https://www.debian.org/lts/security/...

6.5CVSS6.8AI score0.00625EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/06/30 10:17 p.m.8 views

addpage (=0.2.0), amazon-textract-helper (>=0.0.2 <=0.0.30) +89 more potentially affected by CVE-2023-36810 via pypdf2 (>=1.24.0 <=1.27.5)

pypdf2 PYPI version =1.24.0, =0.0.2, =0.0.1, =0.0.2, =0.0.1, =0.1.1, =0.1.1, =0.2.0, =0.1.0, =0.0.1, =1.1.0, =0.9.0, =1.0.0, =2.0.0 - dftimewolf =20200608.0.0a0 and more Source cves: CVE-2023-36810 Source advisory: OSV:GHSA-JRM6-H9CQ-8GQW...

6.5CVSS6.5AI score0.00625EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2023/06/30 7:15 p.m.35 views

CVE-2023-36810

pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...

6.5CVSS6.7AI score0.00625EPSS
Exploits1References5
CVE
CVE
added 2023/06/30 6:43 p.m.64 views

CVE-2023-36810

CVE-2023-36810 affects the Python PDF library pypdf/pypdf2 . The issue is a quadratic runtime caused by processing certain malformed PDFs, which can cause the process to run indefinitely on a single CPU core (no memory impact stated). The vulnerability has been fixed in the project via PR 808, an...

6.5CVSS6.1AI score0.00625EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder