10 matches found
Fedora: Security Advisory (FEDORA-2024-b00678c08a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2024-22641
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TCPDF version 6.6.5 and before is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted SVG file. CVE-2024-22641 Note that Nessus...
Fedora 41 : php-tcpdf (2024-b00678c08a)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-b00678c08a advisory. Version 6.7.7 2024-10-26 - Update regular expression to avoid ReDoS CVE-2024-22641 - PHP 8.4 Fix: Curl CURLOPTBINARYTRANSFER deprecated 675 - SVG detection f...
Mageia: Security Advisory (MGASA-2024-0361)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0361 Updated php-tcpdf packages fix security vulnerability
TCPDF version 6.6.5 and before is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted SVG file. CVE-2024-22641...
Updated php-tcpdf packages fix security vulnerability
TCPDF version 6.6.5 and before is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted SVG file. CVE-2024-22641...
Fedora 40 : php-tcpdf (2024-afeeca72ce)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-afeeca72ce advisory. Version 6.7.7 2024-10-26 - Update regular expression to avoid ReDoS CVE-2024-22641 - PHP 8.4 Fix: Curl CURLOPTBINARYTRANSFER deprecated 675 - SVG detection f...
Fedora 39 : php-tcpdf (2024-0b2854c95b)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-0b2854c95b advisory. Version 6.7.7 2024-10-26 - Update regular expression to avoid ReDoS CVE-2024-22641 - PHP 8.4 Fix: Curl CURLOPTBINARYTRANSFER deprecated 675 - SVG detection f...
Fedora: Security Advisory (FEDORA-2024-afeeca72ce)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-22641
CVE-2024-22641 affects TCPDF and causes Regular Expression Denial of Service when parsing specially crafted SVG files. Public reports show multiple distributions addressing it: Debian (bookworm: 6.6.2+dfsg1-1+deb12u1; bullseye: 6.3.5+dfsg1-1+deb11u1), Fedora (6.7.7), and Debian LTS DSAs provide f...