CVE-2026-31826

CVSS v4.0

6.8

Medium

Vector

AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.8.0

Description pypdf is a free and open-source pure-python PDF library. A crafted PDF file can cause excessive memory usage when parsed, specifically when processing a content stream with a large /Length value, irrespective of the actual data length within the stream.

Recommendations Update to version 6.8.0 or later.

Exploit

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BDU:2026-07334

CVE-2026-31826

GHSA-HQMH-PPP3-XVM7

OPENSUSE-SU-2026:10332-1

OPENSUSE-SU-2026:10334-1

OPENSUSE-SU-2026:20375-1

Affected Products

Red Os

Pypdf

CVE-2026-31826

Weakness Enumeration

Related Identifiers

Affected Products

References · 26