Low: librsvg2

Issue Overview: time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used...

MiracleLinux 9 : librsvg2-2.50.7-1.el9.1 (AXSA:2023-6396:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6396:01 advisory. librsvg: Arbitrary file read when xinclude href has special characters CVE-2023-38633 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : librsvg2-2.26.0-6.1.1.AXS4 (AXSA:2014-042:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-042:01 advisory. An SVG library based on cairo. Security issues fixed with this release: CVE-2013-1881 GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary fil...

EulerOS 2.0 SP10 : librsvg2 (EulerOS-SA-2026-1030)

According to the versions of the librsvg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the...

EulerOS 2.0 SP10 : librsvg2 (EulerOS-SA-2026-1051)

According to the versions of the librsvg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the...

Huawei EulerOS: Security Advisory for librsvg2 (EulerOS-SA-2026-1051)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for librsvg2 (EulerOS-SA-2026-1030)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2016-7097

Malware in sbrugna...

Low: librsvg2

Issue Overview: RUSTSEC-2024-0429 is a vulnerability discovered in the glib Rust crate affecting versions prior to 0.20.0. The issue involves unsoundness in Iterator and DoubleEndedIterator implementations for glib::VariantStrIter, where passing an immutable reference to a function that mutates t...

RHSA-2023:5081 Red Hat Security Advisory: librsvg2 security update

Bulletin has no description...

RHSA-2023:4809 Red Hat Security Advisory: librsvg2 security update

Bulletin has no description...

RHSA-2020:4709 Red Hat Security Advisory: librsvg2 security update

Bulletin has no description...

RHSA-2014:0127 Red Hat Security Advisory: librsvg2 security update

Bulletin has no description...

RHSA-2011:1289 Red Hat Security Advisory: librsvg2 security update

Bulletin has no description...

CVE-2021-38190 affecting package librsvg2 for versions less than 2.58.1-1

CVE-2021-38190 affecting package librsvg2 for versions less than 2.58.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-27378 affecting package librsvg2 for versions less than 2.58.1-1

CVE-2021-27378 affecting package librsvg2 for versions less than 2.58.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-24713 affecting package librsvg2 for versions less than 2.58.1-1

CVE-2022-24713 affecting package librsvg2 for versions less than 2.58.1-1. An upgraded version of the package is available that resolves this issue...

RHEL 6 : librsvg2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - librsvg: SIGFPE is raised in boxblurline function of rsvg-filter.c CVE-2017-11464 - The...

RHEL 5 : librsvg2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - librsvg: SIGFPE is raised in boxblurline function of rsvg-filter.c CVE-2017-11464 - The...

RHEL 7 : librsvg2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - chromium-browser: Buffer overflow in Skia CVE-2014-7904 - librsvg: SIGFPE is raised in boxblurline functi...