docling-core: Local file access and memory exhaustion via image references (CVE-2025-XXXX)
docling-core versions >=2.5.0, <2.74.1 allowed local file:// image references and accepted inline data: content without a decoded-size limit, potentially enabli
What changed
docling-core versions >=2.5.0, <2.74.1 allowed local file:// image references and accepted inline data: content without a decoded-size limit, potentially enabling local file access or excessive memory use. Patched in 2.74.1 by blocking local file URIs by default and adding a size limit for decoded inline image data.
Who it affects
Applications using docling-core >=2.5.0, <2.74.1 that accept untrusted image references.
What to do today
Upgrade to docling-core >=2.74.1 immediately. If not possible, reject file: and data: image references from untrusted input, allow only approved sources, and apply input size/memory limits.