GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
30 advisories
Filter by severity
pypdf: Possible infinite loop when processing threads/articles in writer
Moderate
CVE-2026-54651
was published
for
pypdf
(pip)
Jul 9, 2026
pypdf: Missing stream length values ignore defined limits
Moderate
GHSA-jm82-fx9c-mx94
was published
for
pypdf
(pip)
Jun 18, 2026
pypdf: Possible infinite loop when processing outlines/bookmarks in writer
Moderate
CVE-2026-54531
was published
for
pypdf
(pip)
Jun 16, 2026
pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction
Moderate
CVE-2026-54530
was published
for
pypdf
(pip)
Jun 16, 2026
pypdf: Possible large memory usage for form XObjects during text extraction
Moderate
CVE-2026-49461
was published
for
pypdf
(pip)
Jun 16, 2026
pypdf: Inefficient decoding of FlateDecode PNG predictor streams
Moderate
CVE-2026-49460
was published
for
pypdf
(pip)
Jun 16, 2026
pypdf: Manipulated XMP metadata streams can exhaust RAM
Moderate
CVE-2026-48735
was published
for
pypdf
(pip)
Jun 16, 2026
pypdf: Possible long runtimes for zero-only width values in cross-reference streamsuntimes for zero-only width values in cross-reference streams
Moderate
CVE-2026-48156
was published
for
pypdf
(pip)
Jun 12, 2026
pypdf: Possible large memory usage for large offsets for layout mode text
Moderate
CVE-2026-48155
was published
for
pypdf
(pip)
Jun 12, 2026
pypdf: Manipulated FlateDecode image dimensions can exhaust RAM
Moderate
CVE-2026-41314
was published
for
pypdf
(pip)
Apr 16, 2026
pypdf: Possible long runtimes for wrong size values in incremental mode
Moderate
CVE-2026-41313
was published
for
pypdf
(pip)
Apr 16, 2026
pypdf: Manipulated FlateDecode predictor parameters can exhaust RAM
Moderate
CVE-2026-41312
was published
for
pypdf
(pip)
Apr 16, 2026
pypdf has long runtimes for wrong size values in cross-reference and object streams
Moderate
CVE-2026-41168
was published
for
pypdf
(pip)
Apr 15, 2026
pypdf: Manipulated XMP metadata entity declarations can exhaust RAM
Moderate
CVE-2026-40260
was published
for
pypdf
(pip)
Apr 10, 2026
pypdf: Possible infinite loop during recovery attempts in DictionaryObject.read_from_stream
Moderate
CVE-2026-33699
was published
for
pypdf
(pip)
Mar 25, 2026
pypdf has inefficient decoding of array-based streams
Moderate
CVE-2026-33123
was published
for
pypdf
(pip)
Mar 18, 2026
pypdf: manipulated stream length values can exhaust RAM
Moderate
CVE-2026-31826
was published
for
pypdf
(pip)
Mar 11, 2026
pypdf vulnerable to inefficient decoding of ASCIIHexDecode streams
Moderate
CVE-2026-28804
was published
for
pypdf
(pip)
Mar 2, 2026
pypdf: Manipulated RunLengthDecode streams can exhaust RAM
Moderate
CVE-2026-28351
was published
for
pypdf
(pip)
Feb 28, 2026
pypdf: Manipulated FlateDecode XFA streams can exhaust RAM
Moderate
CVE-2026-27888
was published
for
pypdf
(pip)
Feb 26, 2026
pypdf possibly has long runtimes for malformed FlateDecode streams
Moderate
CVE-2026-27026
was published
for
pypdf
(pip)
Feb 18, 2026
pypdf has possible long runtimes/large memory usage for large /ToUnicode streams
Moderate
CVE-2026-27025
was published
for
pypdf
(pip)
Feb 18, 2026
pypdf has a possible infinite loop when processing TreeObject
Moderate
CVE-2026-27024
was published
for
pypdf
(pip)
Feb 18, 2026
pypdf has possible Infinite Loop when processing outlines/bookmarks
Moderate
CVE-2026-24688
was published
for
pypdf
(pip)
Jan 26, 2026
pypdf has possible long runtimes for malformed startxref
Low
CVE-2026-22691
was published
for
pypdf
(pip)
Jan 9, 2026
ProTip!
Advisories are also available from the
GraphQL API