pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF which leads to an infinite loop. This requires reading a file in non-strict mode. This has been fixed in pypdf 6.9.2. If users cannot upgrade yet, consider applying the changes from the patch manually.
1.26.0-21.26.0-3ubuntu11.26.0-3ubuntu1.20.04.11.26.0-3ubuntu1.20.04.21.26.0-41.26.0-4ubuntu0.22.04.11.26.0-4ubuntu0.22.04.23.17.4-13.4.1-14.0.0-14.0.1-14.0.2-12.12.1-32.12.1-44.3.1-15.4.0-15.4.0-16.9.2-11.23+git20141008-11.25.1-11.25.1-1ubuntu0.1~esm11.25.1-1ubuntu0.1~esm21.26.0-21.26.0-2ubuntu0.1~esm11.26.0-2ubuntu0.1~esm2Exploitability
AV:NAC:LAT:PPR:NUI:NVulnerable System
VC:NVI:NVA:HSubsequent System
SC:NSI:NSA:NCVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U