lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

FIX tcpdf vulnerability to roman numeral bomb, cf. tecnickom/TCPDF issue #315

Browse Source
This commit is contained in:
atm-florian 2021-10-22 18:26:23 +02:00
parent bd52613331
commit 17773f8414
2 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
dev/dolibarr_changes.txt
View File

@ -175,6 +175,18 @@ In htdocs/includes/tecnickcom/tcpdf/tcpdf.php
- protected $default_monospaced_font = 'courier'; - protected $default_monospaced_font = 'courier';
+ protected $default_monospaced_font = 'freemono'; + protected $default_monospaced_font = 'freemono';
* In tecnickcom/tcpdf/include/tcpdf_static, in function intToRoman, right at the beginning
of the function, replace:
$roman = '';
with:
$roman = '';
if ($number >= 4000) {
// do not represent numbers above 4000 in Roman numerals
return strval($number);
}

4
htdocs/includes/tecnickcom/tcpdf/include/tcpdf_static.php
View File

@ -1440,6 +1440,10 @@ class TCPDF_STATIC {
*/ */
public static function intToRoman($number) { public static function intToRoman($number) {
$roman = ''; $roman = '';
if ($number >= 4000) {
// do not represent numbers above 4000 in Roman numerals
return strval($number);
}
while ($number >= 1000) { while ($number >= 1000) {
$roman .= 'M'; $roman .= 'M';
$number -= 1000; $number -= 1000;