6 matches found
ROOT-APP-PYPI-CVE-2026-27628 CVE-2026-27628 in rootio-pypdf - Patched by Root
Root has patched CVE-2026-27628 in the rootio-pypdf package for Root:PyPI. Multiple fixed versions available...
CVE-2026-27628 vulnerabilities
Vulnerabilities for packages: open-webui...
01os (>=0.0.5 <=0.0.13), 3m (>=0.1.0 <=0.1.3) +2554 more potentially affected by CVE-2026-27628 via pypdf (>=3.10.0 <=6.7.1)
pypdf PYPI version =3.10.0, =0.0.5, =0.1.0, =0.0.1, =0.2.0, =0.4.0, =0.3.0, =0.3.0, =0.1.1, =0.1.0, =0.0.2, =0.2.0, =1.2.27, =3.0.145 and more Source cves: CVE-2026-27628 Source advisory: OSV:GHSA-2RW7-X74F-JG35...
01os (>=0.0.5 <=0.0.13), 3m (>=0.1.0 <=0.1.3) +2094 more potentially affected by CVE-2026-27628 via pypdf (>=6.0.0 <=6.7.1)
pypdf PYPI version =6.0.0, =0.0.5, =0.1.0, =0.0.1, =0.2.0, =0.4.0, =0.3.0, =0.3.0, =0.1.1, =0.1.0, =0.0.2, =0.2.0, =1.2.27, =0.1.0, =0.6.0, =0.7.3 and more Source cves: CVE-2026-27628 Source advisory: SNYK:PYTHON-PYPDF-15340922...
CVE-2026-27628
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires reading the file. This has been fixed in pypdf 6.7.2. As a workaround, one may apply the patch manually...
Linux Distros Unpatched Vulnerability : CVE-2026-27628
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop...