2 matches found
SUSE SLED15: gdk-pixbuf-loader-rsvg / gdk-pixbuf-loader-rsvg-32bit / librsvg-2-2 / etc (SUSE-SU-2026:0243-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0243-1 advisory. Update to version 2.57.4 - bsc1243867: - CVE-2024-12224: RUSTSEC-2024-0421 - idna accepts Punycode labels...
CVE-2024-12224
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname...