GHSA-cj93-chg6-vgv8Medium
pypdf: Possible large memory usage for large offsets for layout mode text
🔗 CVE IDs covered (1)
📋 Description
Impact
An attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting text in layout mode with large character offsets.
Patches
This has been fixed in pypdf==6.12.0.
Workarounds
If developers are unable to immediately upgrade, they should consider applying the changes from PR #3790.
🎯 Affected products1
- pip/pypdf:< 6.12.0