Debian/php-dompdf — 13 CVEs

CRITICAL10.0CVE-2023-24813URI validation failure on SVG parsing. Bypass of CVE-2023-23924

from 0, < 2.0.3+dfsg-1

CRITICAL9.8CVE-2021-3838Deserialization of Untrusted Data in dompdf/dompdf

from 0, < 0.6.2+dfsg-3.1+deb11u1

CRITICAL9.8CVE-2021-3838Deserialization of Untrusted Data in dompdf/dompdf

from 0, < 0.6.2+dfsg-3.1+deb11u1

CRITICAL9.8Improper Restriction of XML External Entity Reference in dompdf/dompdf

from 0, < 2.0.2+dfsg-1

CRITICAL9.8Deserialization of Untrusted Data in dompdf/dompdf

from 0, < 0.6.2+dfsg-3+deb10u2

CRITICAL9.8Deserialization of Untrusted Data in dompdf/dompdf

from 0, < 0.6.2+dfsg-3+deb10u1

HIGH8.8DOMPDF Remote Code Execution

from 0, < 0.6.2+dfsg-1

MEDIUM6.5DOMPDF denial of service vulnerability

from 0, < 0.6.2+dfsg-1

MEDIUM6.5DOMPDF Information Disclosure

from 0, < 0.6.2+dfsg-1

MEDIUM5.3Denial of service caused by infinite recursion when parsing SVG images

from 0, < 2.0.3+dfsg-1+deb12u1

MEDIUM5.3Dompdf before v2.0.0 vulnerable to chroot check bypass

from 0, < 0.6.2+dfsg-3.1+deb11u1

—DOMPDF Remote File Inclusion Vulnerability

from 0, < 0.6.1+dfsg-1

—DOMPDF Arbitrary File Read

from 0, < 0.6.1+dfsg-2

pkg:Debian/php-dompdf