Fedora Account System
Red Hat Associate
Red Hat Customer
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
This is part of a group of similar vulnerabilities related to cmap pickle files in pdfminer. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-286b1c8479 included a backport of upstream’s change to switch cmaps from pickle to json, which will have addressed all issues related to pickle files.