muhammara and hummus are vulnerable to denial of service. The vulnerability exists due to PDFDocumentHandler::WriteStreamObject
in PDFDocumentHandler.cpp
where the attacker supplies a maliciously crafted PDF file to be appended to another which will cause an application crash.
github.com/galkahana/HummusJS/commit/a9bf2520ab5abb69f9328906e406fbebfb36159a
github.com/galkahana/HummusJS/issues/293
github.com/galkahana/PDF-Writer/pull/180
github.com/julianhille/MuhammaraJS/commit/4df356bd28114ff2962e92be40e5e740d3fd6ceb
github.com/julianhille/MuhammaraJS/issues/191
github.com/julianhille/MuhammaraJS/pull/194
github.com/julianhille/MuhammaraJS/security/advisories/GHSA-rcrx-fpjp-mfrw