9 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-4348
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rsvgcssnormalizefontsize function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service stack consumption and application crash...
Debian: Security Advisory (DLA-477-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP1 : librsvg2 (EulerOS-SA-2017-1136)
According to the version of the librsvg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The rsvgcssnormalizefontsize function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service stack consumption and...
CVE-2016-4348
The rsvgcssnormalizefontsize function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service stack consumption and application crash via circular definitions in an SVG document...
CVE-2016-4348
CVE-2016-4348 affects librsvg 2.40.2: the _rsvg_css_normalize_font_size function allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via circular definitions in an SVG document. The provided documents confirm the vulnerability details but do n...
openSUSE Security Update : librsvg (openSUSE-2016-608)
This librsvg update to version 2.40.15 fixes the following issues : Security issues fixed : - CVE-2016-4348: DoS parsing SVGs with circular definitions rsvgcssnormalizefontsize function boo977986 Bugs fixed : - Actually scale the image if required, regression fix from upstream git bgo760262. -...
[SECURITY] [DSA 3584-1] librsvg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3584-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 19, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3584-1 (librsvg - security update)
Gustavo Grieco discovered several flaws in the way librsvg, a SAX-based renderer library for SVG files, parses SVG files with circular definitions. A remote attacker can take advantage of these flaws to cause an application using the librsvg library to crash. OpenVAS Vulnerability Test $Id:...
[SECURITY] [DLA 477-1] librsvg security update
Package : librsvg Version : 2.36.1-2+deb7u2 CVE ID : CVE-2015-7558 CVE-2016-4347 CVE-2016-4348 Note CVE-2016-4347 is a duplicate of CVE-2015-7558 Two DoS in librsvg 2.40.2 parsing SVGs with circular definitions were found they will produce stack exhaustion by Gustavo Grieco. The version in wheezy...