MEDIUM
GHSA-g9xf-7f8q-9mcj
pypdf: Possible infinite loop when processing threads/articles in writer
Details
### Impact
An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires merging a file with threads/articles into a writer.
### Patches
This has been fixed in [pypdf==6.13.1](https://github.com/py-pdf/pypdf/releases/tag/6.13.1).
### Workarounds
If users cannot upgrade yet, consider applying the changes from PR [#3839](https://github.com/py-pdf/pypdf/pull/3839).
Are you affected?
Enter the version of the package you're using.