SB20260415175 - Multiple vulnerabilities in PyPDF

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Uncontrolled Memory Allocation (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to memory allocation with excessive size value in the FlateDecode stream processing logic when processing a PDF stream compressed using /FlateDecode with a /Predictor value other than 1 and large predictor parameters. A remote attacker can supply a specially crafted PDF to cause a denial of service.

Exploitation requires the application to access the crafted compressed stream.

2) Excessive Iteration (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to excessive iteration in incremental mode processing when loading a PDF with a large trailer /Size value. A remote attacker can supply a specially crafted PDF to cause a denial of service.

3) Uncontrolled Memory Allocation (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to memory allocation with excessive size value in the FlateDecode image handling functionality when processing a crafted PDF containing large image dimension values. A remote attacker can supply a specially crafted PDF to cause a denial of service.

Remediation

Install update from vendor's website.

References

• https://github.com/py-pdf/pypdf/security/advisories/GHSA-7gw9-cf7v-778f
• https://github.com/py-pdf/pypdf/security/advisories/GHSA-4pxv-j86v-mhcw
• https://github.com/py-pdf/pypdf/security/advisories/GHSA-x284-j5p8-9c5p