muhammara@2.4.0 vulnerabilities
Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library
latest version
6.0.3
latest non vulnerable version
first published
5 years ago
latest version published
10 days ago
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the muhammara package. This does not include vulnerabilities belonging to this package’s dependencies.
Fix vulnerabilities automatically
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Unchecked Return Value to NULL Pointer Dereference. This can occur when supplying a maliciously crafted PDF file to be parsed. NOTE: For users using the How to fix Unchecked Return Value to NULL Pointer Dereference? Upgrade | <2.6.2>=3.0.0 <3.3.0 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when supplying a maliciously crafted PDF file to be appended to another. How to fix Denial of Service (DoS)? Upgrade | <2.6.0 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be parsed. How to fix Denial of Service (DoS)? Upgrade | <2.6.1>=3.0.0 <3.1.1 |
muhammara is a Create, read and modify PDF files and streams. A drop in replacement for hummusjs PDF library Affected versions of this package are vulnerable to Denial of Service (DoS) when How to fix Denial of Service (DoS)? Upgrade | <2.6.0 |