Advisories » MGASA-2019-0053

Updated php-tcpdf packages fix security vulnerabilities

Publication date: 30 Jan 2019
Modification date: 30 Jan 2019
Type: security
Affected Mageia releases : 6

Description

- Fix for security vulnerability: Using the phar:// wrapper it was
possible to trigger the unserialization of user provided data.
- Merge various fixes for PHP 7.3 compatibility and security.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=23699
• https://github.com/tecnickcom/TCPDF/blob/master/CHANGELOG.TXT

SRPMS

6/core

• php-tcpdf-6.2.26-1.mga6