muhammara@2.3.0 vulnerabilities
Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library
latest version
5.2.0
latest non vulnerable version
first published
4 years ago
latest version published
1 months ago
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the muhammara package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Unchecked Return Value to NULL Pointer Dereference. This can occur when supplying a maliciously crafted PDF file to be parsed. NOTE: For users using the How to fix Unchecked Return Value to NULL Pointer Dereference? Upgrade | <2.6.2>=3.0.0 <3.3.0 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when supplying a maliciously crafted PDF file to be appended to another. How to fix Denial of Service (DoS)? Upgrade | <2.6.0 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be parsed. How to fix Denial of Service (DoS)? Upgrade | <2.6.1>=3.0.0 <3.1.1 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when How to fix Denial of Service (DoS)? Upgrade | <2.6.0 |