CVE-2026-42310 | Pillow up to 12.1.x PDF infinite loop (GHSA-r73j-pqj5-w3x7)

A vulnerability was found in Pillow up to 12.1.x. It has been declared as problematic. The impacted element is an unknown function of the component PDF Handler. The manipulation results in infinite loop.

This vulnerability is cataloged as CVE-2026-42310. The attack must be initiated from a local position. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More