3 matches found
EUVD-2018-21826
librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that allows local attackers to cause a denial of service by processing malformed SVG files. Attackers can supply crafted SVG input to the rsvg conversion tool to trigger a segmentation fault in the cairo image compositor...
The vulnerability of the XInclude mechanism for combining XML documents in the librsvg visualization library allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the XInclude mechanism for combining XML documents in the librsvg vector graphics rendering library is related to an incorrect restriction on the path name to the restricted directory during the processing of the xi:include element. Exploiting this vulnerability could allow a...
UBUNTU-CVE-2017-11464
A SIGFPE is raised in the function boxblurline of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero...