pypdf2@1.27.12 vulnerabilities

A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

latest version

3.0.1
first published

11 years ago
latest version published

2 years ago
licenses detected
- BSD-3-Clause
  [1.27.4,2.11.2)
View pypdf2 package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the pypdf2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Denial of Service (DoS) PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Denial of Service (DoS). An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop if `__parse_content_stream` is executed. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affect memory usage. How to fix Denial of Service (DoS)? There is no fixed version for `PyPDF2`.	[0,)
H Denial of Service (DoS) PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Denial of Service (DoS) due to invalid object. Exploiting this vulnerability is possible when reading the metadata. How to fix Denial of Service (DoS)? Upgrade `PyPDF2` to version 2.10.6 or higher.	[,2.10.6)

Denial of Service (DoS)

PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

Affected versions of this package are vulnerable to Denial of Service (DoS). An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop if __parse_content_stream is executed. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affect memory usage.

How to fix Denial of Service (DoS)?

There is no fixed version for PyPDF2.

[0,)

Denial of Service (DoS)

PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

Affected versions of this package are vulnerable to Denial of Service (DoS) due to invalid object. Exploiting this vulnerability is possible when reading the metadata.

How to fix Denial of Service (DoS)?

Upgrade PyPDF2 to version 2.10.6 or higher.

[,2.10.6)

Go back to all versions of this package

pypdf2@1.27.12 vulnerabilities

A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files

latest version

first published

latest version published

licenses detected

Direct Vulnerabilities