EUVD-2021-0166

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2021-29421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries. CVE-2021-29421 Note that Nessus relies on...

OPENSUSE-SU-2024:13864-1 python310-pikepdf-8.15.0-1.1 on GA media

These are all security issues fixed in the python310-pikepdf-8.15.0-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11250-1 python36-pikepdf-2.12.1-1.3 on GA media

These are all security issues fixed in the python36-pikepdf-2.12.1-1.3 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2021-29421

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries...

GHSA-X58J-J539-W8MV Duplicate Advisory: Improper Restriction of XML External Entity Reference in pikepdf

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421, GHSA-ccgm-3xw4-h5p8. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to...

Duplicate Advisory: Improper Restriction of XML External Entity Reference in pikepdf

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421, GHSA-ccgm-3xw4-h5p8. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to...

CVE-2021-46849

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

Mageia: Security Advisory (MGASA-2021-0268)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated python-pikepdf packages fix security vulnerability

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries CVE-2021-29421...

MGASA-2021-0268 Updated python-pikepdf packages fix security vulnerability

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries CVE-2021-29421...

GHSA-CCGM-3XW4-H5P8 Improper Restriction of XML External Entity Reference in pikepdf

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries...

Improper Restriction of XML External Entity Reference in pikepdf

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries...

sec-certs (>=0.0.0 <=0.0.1) potentially affected by CVE-2021-29421 via pikepdf (=2.0.0)

pikepdf PYPI version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on pikepdf and may be impacted: - sec-certs =0.0.0, =0.0.1 Source cves: CVE-2021-29421 Source advisory: OSV:GHSA-CCGM-3XW4-H5P8...

Fedora 33 : python-pikepdf (2021-4bf9909a76)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-4bf9909a76 advisory. - models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries. CVE-2021-29421 Note that...

Fedora 32 : python-pikepdf (2021-d97bc581be)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-d97bc581be advisory. - models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries. CVE-2021-29421 Note that...

Fedora: Security Advisory for python-pikepdf (FEDORA-2021-4bf9909a76)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python-pikepdf (FEDORA-2021-d97bc581be)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python-pikepdf (FEDORA-2021-4bf9909a76)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for python-pikepdf (FEDORA-2021-d97bc581be)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...