Medium6.5Red Hat Linux Updated
Denial of Service via crafted PDF with missing stream length
CVE-2026-57204 Published Jun 30, 2026Updated by vendor Jun 30, 2026
Affected products & platforms
Red Hat LinuxUnclassified
Summary
Denial of Service via crafted PDF with missing stream length. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-770.
Affected versions
- < 6.13.3
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- To mitigate this issue, Red Hat recommends avoiding the processing of untrusted PDF files with applications utilizing the pypdf library. Additionally, deploying applications that handle PDF content within a sandboxed environment can limit the potential impact of successful exploitation.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.