12 matches found
Debian dla-4427 : php-dompdf - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4427 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4427-1 [email protected]...
CVE-2022-2400
External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0...
Linux Distros Unpatched Vulnerability : CVE-2022-2400
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0. CVE-2022-2400 Note that Nessus relies on the presence of the package as...
USN-6277-2: Dompdf vulnerabilities
USN-6277-1 fixed vulnerabilities in Dompdf. This update provides the corresponding updates for Ubuntu 22.04 LTS. Original advisory details: It was discovered that Dompdf was not properly validating untrusted input when processing HTML content under certain circumstances. An attacker could possibl...
Ubuntu 22.04 LTS : Dompdf vulnerabilities (USN-6277-2)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6277-2 advisory. USN-6277-1 fixed vulnerabilities in Dompdf. This update provides the corresponding updates for Ubuntu 22.04 LTS. Tenable has extracted the preceding...
Ubuntu: Security Advisory (USN-6277-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : Dompdf vulnerabilities (USN-6277-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6277-1 advisory. It was discovered that Dompdf was not properly validating untrusted input when processing HTML content under certain circumstance...
Debian dla-3495 : php-dompdf - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3495 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3495-1 [email protected]...
[SECURITY] [DLA 3495-1] php-dompdf security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3495-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès July 13, 2023 https://wiki.debian.org/LTS -...
CVE-2022-2400
External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-2400
CVE-2022-2400 affects php-dompdf prior to 2.0.0, with Debian/Ubuntu advisories (DLA-4427-1, USN-6277-1/2) documenting a vulnerability where external control of the file name/path could bypass access checks. Debian 11 fix: upgrade to 0.6.2+dfsg-3.1+deb11u1; Ubuntu advisories reference correspondin...
CVE-2022-2400 External Control of File Name or Path in dompdf/dompdf
External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0...