CVE-2026-33699 pypdf: Possible infinite loop during recovery attempts in DictionaryObject.read_from_stream

pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF which leads to an infinite loop. This requires reading a file in non-strict mode. This has been fixed in pypdf 6.9.2. If users cannot upgrade yet, consider...

Apache Tomcat 安全漏洞

Apache Tomcat is a lightweight Web application server from the American Apache Apache Foundation. The program implements support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat that stems from an incorrect object recovery and reuse vulnerability that could...

Apache Tomcat 安全漏洞

Apache Tomcat is a lightweight Web application server from the American Apache Apache Foundation. The program implements support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat that stems from the presence of an incorrect object recovery and reuse...

IBM Spectrum Protect Backup-Archive Client Information Disclosure Vulnerability

IBM Spectrum Protect Backup-Archive Client is a set of client programs for IBM Spectrum Protect file backup and archiving from IBM USA. An information disclosure vulnerability exists in IBM Spectrum Protect Backup-Archive Client, which can be exploited by an attacker to recover or retrieve object...