Debian Pypdf2 vulnerabilities

CVE-2026-27024 [MEDIUM] CVE-2026-27024: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires accessing the children of a TreeObject, for example as part of outlines. This vulnerability is fixed in 6.7.1. Scope: local bookworm: open forky: resolved (fixed in 6.9.0-1) sid: resolved (fix

CVE-2026-28804 [MEDIUM] CVE-2026-28804: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5,... pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires accessing a stream which uses the /ASCIIHexDecode filter. This issue has been patched in version 6.7.5. Scope: local bookworm: open forky: resolved (fixed in 6.9.0-1) sid: resolved (fixed

CVE-2026-28351 [MEDIUM] CVE-2026-28351: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.4,... pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.4, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the content stream using the RunLengthDecode filter. This has been fixed in pypdf 6.7.4. As a workaround, consider applying the changes from PR #3664. Scope: local bookworm:

CVE-2026-27026 [MEDIUM] CVE-2026-27026: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires a malformed /FlateDecode stream, where the byte-by-byte decompression is used. This vulnerability is fixed in 6.7.1. Scope: local bookworm: open forky: resolved (fixed in 6.9.0-1) sid: resolved (

CVE-2026-27888 [MEDIUM] CVE-2026-27888: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.3, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.7.3, an attacker who uses this vulnerability can craft a PDF which leads to the RAM being exhausted. This requires accessing the `xfa` property of a reader or writer and the corresponding stream being compressed using `/FlateDecode`. This has been fixed in pypdf 6.7.3. As a workaround, apply the pat

CVE-2026-33699 [MEDIUM] CVE-2026-33699: pypdf - pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2... pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF which leads to an infinite loop. This requires reading a file in non-strict mode. This has been fixed in pypdf 6.9.2. If users cannot upgrade yet, consider applying the changes from the patch manually. Scope: local bookworm: open

CVE-2026-31826 [MEDIUM] CVE-2026-31826: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0. Scope: local bookworm: open forky: r

CVE-2026-27025 [MEDIUM] CVE-2026-27025: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text extraction. This vulnerability is fixed in 6.7.1. Scope: local bookworm: o

CVE-2026-33123 [MEDIUM] CVE-2026-33123: pypdf - pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1... pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1 allow an attacker to craft a malicious PDF which leads to long runtimes and/or large memory usage. Exploitation requires accessing an array-based stream with many entries. This issue has been fixed in version 6.9.1. Scope: local bookworm: open forky: resolved (fixed in 6.9.2-1) sid: res

CVE-2026-24688 [MEDIUM] CVE-2026-24688: pypdf - pypdf is a free and open-source pure-python PDF library. An attacker who uses an... pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions prior to 6.6.2 can craft a PDF which leads to an infinite loop. This requires accessing the outlines/bookmarks. This has been fixed in pypdf 6.6.2. If projects cannot upgrade yet, consider applying the changes from PR #3610 manuall

CVE-2026-27628 [LOW] CVE-2026-27628: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an atta... pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires reading the file. This has been fixed in pypdf 6.7.2. As a workaround, one may apply the patch manually. Scope: local bookworm: open forky: resolved (fixed in 6.9.0-1) sid: resolved (fixed in 6.9

CVE-2026-22691 [LOW] CVE-2026-22691: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0,... pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for invalid startxref entries. When rebuilding the cross-reference table, PDF files with lots of whitespace characters become problematic.

CVE-2026-22690 [LOW] CVE-2026-22690: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0,... pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for missing /Root object with large /Size values. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for actually invalid files. This can be achieved by omitting the /Root entry in the trailer, while using a rather

CVE-2025-55197 [MEDIUM] CVE-2025-55197: pypdf - pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0,... pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0, an attacker can craft a PDF which leads to the RAM being exhausted. This requires just reading the file if a series of FlateDecode filters is used on a malicious cross-reference stream. Other content streams are affected on explicit access. This issue has been fixed in 6.0.0. If an upda

CVE-2023-36807 [MEDIUM] CVE-2023-36807: pypdf2 - pypdf is a pure-python PDF library capable of splitting, merging, cropping, and ... pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affect memory usage. That is, for e

CVE-2023-36810 [MEDIUM] CVE-2023-36810: pypdf2 - pypdf is a pure-python PDF library capable of splitting, merging, cropping, and ... pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of the CPU by 100%. It does not affect memory usage. This issue has been a

CVE-2023-36464 [MEDIUM] CVE-2023-36464: pypdf - pypdf is an open source, pure-python PDF library. In affected versions an attack... pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop if `__parse_content_stream` is executed. That is, for example, the case if the user extracted text from such a PDF. This issue was introduced in pull request #969 and resolved in pull request #1828. Users are advised to upgrade. Users un

CVE-2023-46250 [MEDIUM] CVE-2023-46250: pypdf - pypdf is a free and open-source pure-python PDF library. An attacker who uses a ... pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affect memory usage. That is, for example, the case when the pypdf-user mani

CVE-2022-24859 [MEDIUM] CVE-2022-24859: pypdf2 - PyPDF2 is an open source python PDF library capable of splitting, merging, cropp... PyPDF2 is an open source python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In versions prior to 1.27.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop if the PyPDF2 if the code attempts to get the content stream. The reason is that the last while-loop in `ContentStream._readI