Skip to content

Possible long runtimes for wrong size values in cross-reference and object streams

Moderate
stefan6419846 published GHSA-jj6c-8h6c-hppx Apr 14, 2026

Package

pip pypdf (pip)

Affected versions

< 6.10.1

Patched versions

>= 6.10.1

Description

Impact

An attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values.

Patches

This has been fixed in pypdf==6.10.1.

Workarounds

If you cannot upgrade yet, consider applying the changes from PR #3733.

Severity

Moderate

CVE ID

CVE-2026-41168

Weaknesses

Excessive Iteration

The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed. Learn more on MITRE.

Credits