GHSA-F2V5-7JQ9-H8CG pypdf: Manipulated RunLengthDecode streams can exhaust RAM

Impact An attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the content stream using the RunLengthDecode filter. Patches This has been fixed in pypdf==6.7.4. Workarounds If you cannot upgrade yet, consider applying the changes from PR 36...

CVE-2026-28351

pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.4, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the content stream using the RunLengthDecode filter. This has been fixed in pypdf 6.7.4. As a workaroun...

EUVD-2024-23048

Malicious code in bioql PyPI...

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. TCPDF 6.7.4 and earlier versions have a security vulnerability that stems from vulnerability to ReDoS Regular Expression Denial of Service attacks...

GHSA-MX3P-FHPW-X6RV TCPDF vulnerable to Regular Expression Denial of Service

TCPDF version = 6.7.4 is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted HTML page with a crafted color...

CVE-2024-32489

TCPDF before 6.7.4 mishandles calls that use HTML syntax...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel version 6.7.4 and earlier, which originates from Printerwrite in drivers/usb/gadget/functions/fprinter.c failing to correctly ca...

Synology Photo Station Multiple Vulnerabilities (SA_17_35)

Synology Photo Station is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Synology Photo Station Directory Traversal Vulnerability (CNVD-2017-27711)

Synology Photo Station is a Synology solution for sharing pictures, videos and blogs over the Internet. A directory traversal vulnerability exists in Synology Photo Station versions prior to 6.7.4-3433 and synphotoio versions prior to 6.3-2968. A remote attacker can exploit the vulnerability to...

Synology Photo Station SQL Injection Vulnerability

Synology Photo Station is a Synology solution for sharing pictures, videos and blogs over the Internet. A SQL injection vulnerability exists in Synology Photo Station versions prior to 6.7.4-3433 and prior to 6.3-2968. A remote attacker can execute arbitrary SQL commands by sending the 'articleid...