Lucene search
K

30 matches found

OSV
OSV
added 2026/05/19 1:34 a.m.8 views

JLSEC-2026-511

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.9AI score0.02125EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-3085

Malware in sbrugna...

7.8CVSS7.7AI score0.01263EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2018-1802

Malware in sbrugna...

8.8CVSS8.6AI score0.02239EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 4:3 a.m.54 views

Security Bulletin: IBM Security Guardium is affected by multiple OS level vulnerabilities

Summary IBM Security Guardium has fixed this vulnerability Vulnerability Details CVEID:CVE-2022-1941 DESCRIPTION: protobuf is vulnerable to a denial of service, caused by a parsing vulnerability for the MessageSet type in the ProtocolBuffers. By sending a specially crafted message with multiple...

7.8CVSS8.9AI score0.05794EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2019-20446

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The...

6.5CVSS6.9AI score0.02125EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/02/03 2:18 p.m.29 views

CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially. Mitigation This flaw is triggered whe...

6.5CVSS4AI score0.02125EPSS
Exploits0References3
OSV
OSV
added 2020/02/02 2:15 p.m.31 views

CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS4.8AI score
Exploits0References7
OSV
OSV
added 2020/02/02 2:15 p.m.2 views

DEBIAN-CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.9AI score0.02125EPSS
Exploits0References1
NVD
NVD
added 2020/02/02 2:15 p.m.18 views

CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.4AI score0.02125EPSS
Exploits0References7
Prion
Prion
added 2020/02/02 2:15 p.m.25 views

Design/Logic Flaw

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

4.3CVSS6.1AI score0.02125EPSS
Exploits0References7Affected Software5
OSV
OSV
added 2020/02/02 2:15 p.m.2 views

UBUNTU-CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.9AI score0.02125EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2020/02/02 12:0 a.m.30 views

CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.8AI score0.02125EPSS
Exploits0
CVE
CVE
added 2020/02/02 12:0 a.m.396 views

CVE-2019-20446

The CVE concerns librsvg, GNOME's SVG rendering library. In lib/svg processing (specifically xml.rs), a crafted SVG with nested patterns can trigger denial of service by making the number of final rendered objects explode exponentially, consuming CPU/memory. Affected versions are librsvg up to 2....

6.5CVSS6.3AI score0.02125EPSS
Exploits0References7Affected Software1
AlpineLinux
AlpineLinux
added 2020/02/02 12:0 a.m.36 views

CVE-2019-20446

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially...

6.5CVSS6.6AI score0.02125EPSS
Exploits0
CNVD
CNVD
added 2020/01/16 12:0 a.m.2 views

GNOME librsvg xml.rs file denial of service vulnerability

GNOME librsvg is an open source SVG graphics development library for the GNOME project. A security vulnerability exists in the xml.rs file in GNOME librsvg versions prior to 2.46.2. An attacker can exploit this vulnerability to cause a denial of service with a specially crafted SVG file...

6.5CVSS8.3AI score0.02125EPSS
Exploits0References1
NVD
NVD
added 2018/02/09 11:29 p.m.9 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS8.7AI score0.02239EPSS
Exploits0References3
OSV
OSV
added 2018/02/09 11:29 p.m.20 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS8.9AI score
Exploits0References3
Prion
Prion
added 2018/02/09 11:29 p.m.10 views

Input validation

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

4.3CVSS8.6AI score0.02239EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2018/02/09 11:29 p.m.22 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS7.2AI score0.02239EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2018/02/09 11:0 p.m.13 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS8.7AI score0.02239EPSS
Exploits0
Rows per page
Query Builder