Steve Carton

Use of hashlib.MD5 on FIPS configured installations

1

Specifically, every use of hashlib.md5() is an issue for FIPS kernels which lack openssl support for md5. Can hashlib.md5() be cahnged to use heshlib.new with the usedforsecurity set to False?

PDF Doesn't display, Loading PDF message displayed. No Errors.

6

### Before you start - checklist - [X] I followed instructions in documentation written for my React-PDF version - [X] I have checked if this bug is not already reported...

Please fix version of Library "follow-redirects" to eliminate CVE-2023-26159 issue

3

Versions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by the url.parse() function. When new URL() throws an error,...