Advisories ยป MGASA-2021-0268

Updated python-pikepdf packages fix security vulnerability

Publication date: 18 Jun 2021
Modification date: 18 Jun 2021
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-29421

Description

models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python
allows XXE when parsing XMP metadata entries (CVE-2021-29421).
                

References

SRPMS

8/core