FEDORA-2024-b00678c08a — security update for php-tcpdf

stable

FEDORA-2024-b00678c08a created by remi 7 months ago for Fedora 41

Version 6.7.7 (2024-10-26)

Update regular expression to avoid ReDoS (CVE-2024-22641)
[PHP 8.4] Fix: Curl CURLOPT_BINARYTRANSFER deprecated #675
SVG detection fix for inline data images #646
Fix count svg #647
Since the version 6.7.4, the "0" is considered like empty string and not displayed
Fixed handling of transparency in PDF/A mode in addExtGState method
Encrypt /DA string when document is encrypted
Improve quality of generated seed, avoid potential security pitfall
Try to use random_bytes() first if it's available
Do not include the server parameters in the generated seed, as they might contain sensitive data
Fix bug on _getannotsrefs when there are empty signature appearances but not other annot on a page
Fix SVG coordinate parser that caused drawing artifacts
Remove usage of xml_set_object() function

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-b00678c08a

This update has been submitted for testing by remi.

This update's test gating status has been changed to 'ignored'.

This update has been pushed to testing.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Please login to add feedback.

Metadata

Type

security

Severity

low

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

7 months ago

in testing

7 months ago

in stable

6 months ago

approved

6 months ago

Builds

ignored