Lucene search
+L

27 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In btrfsgetrootref in fs/btrfs/disk-io.c within the Linux kernel, up to version 6.7.1, there may be an assertion failure and a crash occurring because a subvolume can be read out too early after its root item is inserted during subvolume creation...

5.5CVSS6.2AI score0.00308EPSS
Exploits0References2
circl
circl
added 2026/05/15 1:31 a.m.20 views

CVE-2026-44671

creationtimestamp| type| source ---|---|--- 2026-05-15 01:31:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlu6qj5yry2p 2026-05-15 02:34:31+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mlucaql6we2o 2026-05-15 03:57:12+00:00| seen|...

7.5CVSS5.7AI score0.00479EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/03/26 3:17 p.m.4 views

CVE-2026-32342

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site Request Forgery.This issue affects Quiz Maker: from n/a through = 6.7.1.2...

4.3CVSS5.8AI score0.00107EPSS
Exploits0References1
susecve
susecve
added 2026/02/24 12:24 a.m.4 views

SUSE CVE-2026-27025

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

5.5CVSS5.7AI score0.00168EPSS
Exploits0References3
susecve
susecve
added 2026/02/24 12:24 a.m.2 views

SUSE CVE-2026-27026

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

5.5CVSS5.7AI score0.00168EPSS
Exploits0References3
nessus
nessus
added 2026/02/21 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-27026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes...

6.9CVSS5.8AI score0.00168EPSS
Exploits0References3
nvd
nvd
added 2026/02/20 10:16 p.m.8 views

CVE-2026-27026

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

6.9CVSS0.00168EPSS
Exploits0References4
osv
osv
added 2026/02/20 10:16 p.m.6 views

DEBIAN-CVE-2026-27025

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

5.5CVSS5.4AI score0.00168EPSS
Exploits0References1
osv
osv
added 2026/02/20 10:16 p.m.5 views

UBUNTU-CVE-2026-27025

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

6.9CVSS5.8AI score0.00168EPSS
Exploits0References6
cvelist
cvelist
added 2026/02/20 9:12 p.m.32 views

CVE-2026-27026 pypdf possibly has long runtimes for malformed FlateDecode streams

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

6.9CVSS0.00168EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2026/02/20 9:12 p.m.4 views

CVE-2026-27026 pypdf possibly has long runtimes for malformed FlateDecode streams

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1...

6.9CVSS5.3AI score0.00168EPSS
Exploits0References4
cvelist
cvelist
added 2026/02/20 9:11 p.m.26 views

CVE-2026-27025 pypdf has possible long runtimes/large memory usage for large /ToUnicode streams

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

6.9CVSS0.00168EPSS
Exploits0References4
osv
osv
added 2026/02/20 9:11 p.m.9 views

CVE-2026-27025 pypdf has possible long runtimes/large memory usage for large /ToUnicode streams

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

6.9CVSS5.5AI score0.00168EPSS
Exploits0References6
cvelist
cvelist
added 2026/02/20 9:10 p.m.27 views

CVE-2026-27024 pypdf has a possible infinite loop when processing TreeObject

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires accessing the children of a TreeObject, for example as part of outlines. This vulnerability is fixed in 6.7.1...

6.9CVSS0.00168EPSS
Exploits0References4
github
github
added 2026/02/18 10:41 p.m.9 views

pypdf possibly has long runtimes for malformed FlateDecode streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. Patches This has been fixed in pypdf==6.7.1. Workarounds If you cannot upgrade yet, consider applying the chang...

6.9CVSS5.5AI score0.00168EPSS
Exploits0References6Affected Software1
snyk
snyk
added 2026/02/18 10:41 p.m.3 views

Excessive Iteration

Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration in the parsebfrange function in cmap.py. An attacker can cause excessive resource consumption by supplying a...

6.9CVSS5.6AI score0.00168EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/02/18 12:0 a.m.6 views

PT-2026-20909

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.7.1 Description pypdf is a free and open-source pure-python PDF library. A crafted PDF file can cause excessive processing time due to a malformed /FlateDecode stream and byte-by-byte decompression. Recommendations...

6.9CVSS5.2AI score0.00168EPSS
Exploits0References39
ptsecurity
ptsecurity
added 2026/02/18 12:0 a.m.6 views

PT-2026-21301

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.7.1 Description A crafted PDF file can cause an infinite loop when accessing the children of a TreeObject, such as during outline processing. This issue affects the pypdf library, a free and open-source pure-python PD...

6.9CVSS5.2AI score0.00168EPSS
Exploits0References41
attackerkb
attackerkb
added 2025/09/23 12:31 p.m.7 views

CVE-2025-9846

Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information Technology Industry Inc. Inka.Net allows Command Injection. This issue affects Inka.Net: before 6.7.1...

10CVSS5.5AI score0.01041EPSS
Exploits0References3
astralinux
astralinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel up to version 6.7.1, there is a use-after-free in cecqueuemsgfh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c...

5.5CVSS6.6AI score0.00254EPSS
Exploits0References3
Rows per page
Query Builder