Information on source package tcpdf

Available versions

ReleaseVersion
bullseye6.3.5+dfsg1-1
bookworm6.6.2+dfsg1-1
bookworm (security)6.6.2+dfsg1-1+deb12u1
trixie6.9.1+dfsg-1
sid6.9.1+dfsg-1

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2024-56527vulnerablefixedfixedfixedAn issue was discovered in TCPDF before 6.8.0. The Error function lack ...
CVE-2024-56522vulnerablefixedfixedfixedAn issue was discovered in TCPDF before 6.8.0. unserializeTCPDFtag use ...
CVE-2024-56521vulnerablevulnerable (no DSA)fixedfixedAn issue was discovered in TCPDF before 6.8.0. If libcurl is used, CUR ...
CVE-2024-56520vulnerablefixedfixedfixedAn issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TC ...
CVE-2024-56519vulnerablefixedfixedfixedAn issue was discovered in TCPDF before 6.8.0. setSVGStyles does not s ...
CVE-2024-51058vulnerablefixedfixedfixedLocal File Inclusion (LFI) vulnerability has been discovered in TCPDF ...
CVE-2024-32489vulnerablefixedfixedfixedTCPDF before 6.7.4 mishandles calls that use HTML syntax.
CVE-2024-22641vulnerablefixedfixedfixedTCPDF version 6.6.5 and before is vulnerable to ReDoS (Regular Express ...
CVE-2024-22640vulnerablefixedfixedfixedTCPDF version <=6.6.5 is vulnerable to ReDoS (Regular Expression Denia ...

Resolved issues

BugDescription
TEMP-0000000-D91305tcpdf code execution via tcpdf tag
CVE-2018-17057An issue was discovered in TCPDF before 6.2.22. Attackers can trigger ...
CVE-2017-6100tcpdf before 6.2.0 uploads files from the server generating PDF-files ...

Security announcements

DSA / DLADescription
DSA-5933-1tcpdf - security update
DLA-4199-1tcpdf - security update

Search for package or bug name: Reporting problems