GHSA-52x6-gq3r-vpf4Medium
pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction
🔗 CVE IDs covered (1)
📋 Description
Impact
An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires extracting the text in layout mode.
Patches
This has been fixed in pypdf==6.13.0.
Workarounds
If you cannot upgrade yet, consider applying the changes from PR #3830.
🎯 Affected products1
- pip/pypdf:< 6.13.0