Information on source package tcpdf

Available versions

ReleaseVersion
jessie6.0.093+dfsg-1+deb8u1
stretch6.2.12+dfsg2-1
bullseye6.3.5+dfsg1-1
bookworm6.6.2+dfsg1-1
trixie6.7.7+dfsg-1
sid6.7.7+dfsg-1

Open issues

BugjessiestretchbullseyebookwormtrixiesidDescription
CVE-2024-51058vulnerablevulnerablevulnerablevulnerablefixedfixedLocal File Inclusion (LFI) vulnerability has been discovered in TCPDF ...
CVE-2024-32489vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedTCPDF before 6.7.4 mishandles calls that use HTML syntax.
CVE-2024-22641vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedTCPDF version 6.6.5 and before is vulnerable to ReDoS (Regular Express ...
CVE-2024-22640vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedTCPDF version <=6.6.5 is vulnerable to ReDoS (Regular Expression Denia ...
CVE-2018-17057vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedfixedAn issue was discovered in TCPDF before 6.2.22. Attackers can trigger ...

Resolved issues

BugDescription
TEMP-0000000-D91305tcpdf code execution via tcpdf tag
CVE-2017-6100tcpdf before 6.2.0 uploads files from the server generating PDF-files ...

Search for package or bug name: Reporting problems