Linux Distros Unpatched Vulnerability : CVE-2018-25305

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that allows local attackers to cause a denial of service by processing malformed SVG files...

Low: librsvg2

Issue Overview: time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used...

Amazon Linux 2023 : librsvg2, librsvg2-devel, librsvg2-tools (ALAS2023-2026-1591)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1591 advisory. time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack...

UBUNTU-CVE-2018-25305

librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that all...

CVE-2018-25305

librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that allows local attackers to cause a denial of service by processing malformed SVG files. Attackers can supply crafted SVG input to the rsvg conversion tool to trigger a segmentation fault in the cairo image compositor...

CVE-2018-25305 librsvg2-bin 2.40.13 Buffer Overflow via Malformed SVG

librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that allows local attackers to cause a denial of service by processing malformed SVG files. Attackers can supply crafted SVG input to the rsvg conversion tool to trigger a segmentation fault in the cairo image compositor...

librsvg2-bin 安全漏洞

librsvg2-bin is a GNOME open-source command-line tool set that provides functions for rendering and converting SVG images. Version 2.40.13 of librsvg2-bin contains a security vulnerability. This vulnerability stems from a buffer overflow, which could allow local attackers to cause denial-of-servi...

Azure Linux 3.0 Security Update: librsvg2 (CVE-2022-23639)

The version of librsvg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-23639 advisory. - crossbeam-utils provides atomics, synchronization primitives, scoped threads, and other utilities for...

Azure Linux 3.0 Security Update: librsvg2 (CVE-2022-24713)

The version of librsvg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-24713 advisory. - regex is an implementation of regular expressions for the Rust language. The regex crate features built-in...

MiracleLinux 9 : librsvg2-2.50.7-1.el9.1 (AXSA:2023-6396:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6396:01 advisory. librsvg: Arbitrary file read when xinclude href has special characters CVE-2023-38633 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : librsvg2-2.26.0-6.1.1.AXS4 (AXSA:2014-042:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-042:01 advisory. An SVG library based on cairo. Security issues fixed with this release: CVE-2013-1881 GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary fil...

EulerOS 2.0 SP10 : librsvg2 (EulerOS-SA-2026-1051)

According to the versions of the librsvg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the...

EulerOS 2.0 SP10 : librsvg2 (EulerOS-SA-2026-1030)

According to the versions of the librsvg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the...

MiracleLinux 4 : librsvg2-2.26.0-5.AXS4.1 (AXSA:2011-705:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-705:01 advisory. An SVG library based on cairo. Security issues fixed with this release: CVE-2011-3146 No information available at the time of writing, please refer to the CVE...

Huawei EulerOS: Security Advisory for librsvg2 (EulerOS-SA-2026-1051)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for librsvg2 (EulerOS-SA-2026-1030)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2016-7097

Malware in sbrugna...

NewStart CGSL MAIN 7.02 : librsvg2 Vulnerability (NS-SA-2025-0127)

The remote NewStart CGSL host, running version MAIN 7.02, has librsvg2 packages installed that are affected by a vulnerability: - A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the local filesystem outside ...

TencentOS Server 3: librsvg2 (TSSA-2022:0075)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0075 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Low: librsvg2

Issue Overview: RUSTSEC-2024-0429 is a vulnerability discovered in the glib Rust crate affecting versions prior to 0.20.0. The issue involves unsoundness in Iterator and DoubleEndedIterator implementations for glib::VariantStrIter, where passing an immutable reference to a function that mutates t...