pyPdf 6.10.1

Direct Vulnerabilities

Known vulnerabilities in the pyPdf package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Excessive Iteration pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration in the incremental mode for PDF processing. An attacker can cause excessive resource consumption and significantly degrade performance by loading a PDF file with a large trailer `/Size` value. How to fix Excessive Iteration? Upgrade `pypdf` to version 6.10.2 or higher.	[,6.10.2)
M Memory Allocation with Excessive Size Value pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the `FlateDecode` method when handling streams with a `/Predictor` value not equal to 1 and large predictor parameters. An attacker can cause excessive memory consumption by crafting a specially formed PDF file. How to fix Memory Allocation with Excessive Size Value? Upgrade `pypdf` to version 6.10.2 or higher.	[,6.10.2)
M Memory Allocation with Excessive Size Value pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value in the `FlateDecode` image processing when handling images with large size values. An attacker can exhaust system memory by crafting a PDF that references an image with manipulated dimensions, leading to resource exhaustion when the file is processed. How to fix Memory Allocation with Excessive Size Value? Upgrade `pypdf` to version 6.10.2 or higher.	[,6.10.2)

Vulnerability

Vulnerable Version

Excessive Iteration

pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

Affected versions of this package are vulnerable to Excessive Iteration in the incremental mode for PDF processing. An attacker can cause excessive resource consumption and significantly degrade performance by loading a PDF file with a large trailer /Size value.

How to fix Excessive Iteration?

Upgrade pypdf to version 6.10.2 or higher.

[,6.10.2)

Memory Allocation with Excessive Size Value

pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the FlateDecode method when handling streams with a /Predictor value not equal to 1 and large predictor parameters. An attacker can cause excessive memory consumption by crafting a specially formed PDF file.

How to fix Memory Allocation with Excessive Size Value?

Upgrade pypdf to version 6.10.2 or higher.

[,6.10.2)

Memory Allocation with Excessive Size Value

pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value in the FlateDecode image processing when handling images with large size values. An attacker can exhaust system memory by crafting a PDF that references an image with manipulated dimensions, leading to resource exhaustion when the file is processed.

How to fix Memory Allocation with Excessive Size Value?

Upgrade pypdf to version 6.10.2 or higher.

[,6.10.2)

pyPdf@6.10.1

A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

Fix vulnerabilities automatically