Mageia: 2020-0124 High Risk: Php-Tcpdf Vulnerability Mitigation Notice

mageia

January 30, 2019

- Fix for security vulnerability: Using the phar:// wrapper it was possible to trigger the unserialization of user provided data

Summary

- Fix for security vulnerability: Using the phar:// wrapper it was possible to trigger the unserialization of user provided data. - Merge various fixes for PHP 7.3 compatibility and security. References:

References

- https://bugs.mageia.org/show_bug.cgi?id=23699

- https://github.com/tecnickcom/TCPDF/blob/main/CHANGELOG.TXT

Topics Covered

security advisory security issue critical php update mageia unserialization

Resolution

SRPMS

- 6/core/php-tcpdf-6.2.26-1.mga6

Publication date: 30 Jan 2019

URL: https://advisories.mageia.org/MGASA-2019-0053.html

Type: security

Topics Covered

security advisory security issue critical php update mageia unserialization

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks