Количество 6
Количество 6
CVE-2026-31826
pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0.
CVE-2026-31826
A flaw was found in pypdf, a pure-Python PDF library. An attacker can craft a malicious PDF file containing a content stream with an intentionally large /Length value. When this PDF is parsed, it can lead to excessive memory consumption, resulting in a Denial of Service (DoS) condition due to resource exhaustion.
CVE-2026-31826
pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0.
CVE-2026-31826
pypdf is a free and open-source pure-python PDF library. Prior to 6.8. ...
openSUSE-SU-2026:20375-1
Security update for python-PyPDF2
GHSA-hqmh-ppp3-xvm7
pypdf: manipulated stream length values can exhaust RAM
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-31826 pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0. | CVSS3: 5.5 | 0% Низкий | 17 дней назад |
 | CVE-2026-31826 A flaw was found in pypdf, a pure-Python PDF library. An attacker can craft a malicious PDF file containing a content stream with an intentionally large /Length value. When this PDF is parsed, it can lead to excessive memory consumption, resulting in a Denial of Service (DoS) condition due to resource exhaustion. | CVSS3: 6.5 | 0% Низкий | 17 дней назад |
 | CVE-2026-31826 pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0. | CVSS3: 5.5 | 0% Низкий | 17 дней назад |
| CVE-2026-31826 pypdf is a free and open-source pure-python PDF library. Prior to 6.8. ... | CVSS3: 5.5 | 0% Низкий | 17 дней назад |
 | openSUSE-SU-2026:20375-1 Security update for python-PyPDF2 | 0% Низкий | 10 дней назад | |
| GHSA-hqmh-ppp3-xvm7 pypdf: manipulated stream length values can exhaust RAM | 0% Низкий | 17 дней назад |
Уязвимостей на страницу