VYPR

rpm package

opensuse/apache-pdfbox&distro=openSUSE Leap 16.0

pkg:rpm/opensuse/apache-pdfbox&distro=openSUSE%20Leap%2016.0

Vulnerabilities (2)

  • CVE-2026-33929MedApr 14, 2026
    affected < 2.0.36-160000.1.1fixed 2.0.36-160000.1.1

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update

  • CVE-2026-3392LowMar 1, 2026
    affected < 2.0.36-160000.1.1fixed 2.0.36-160000.1.1

    A weakness has been identified in FascinatedBox lily up to 2.3. The affected element is the function eval_tree of the file src/lily_emitter.c. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been made available to th