3 matches found
CVE-2018-17332
CVE-2018-17332 concerns libsvg2, a C SVG parser. The issue is in the function svgGetNextPathField (svg_string.c) where, in certain circumstances, the function returns its input pointer, potentially causing a memory leak due to wasteful malloc calls. This vulnerability is described in multiple sou...
CVE-2018-17334
CVE-2018-17334 affects the libsvg2 SVG parser. The vulnerability is a stack-based buffer overflow in the svgGetNextPathField function (svg_string.c) present up to 2012-10-19. A miscalculated strncpy copy limit can be exploited by remote attackers to cause a denial of service (application crash) a...
CVE-2018-17333
The vulnerability described as CVE-2018-17333 affects the C library libsvg2 (components related to SVG parsing). A stack-based overflow is present in the function svgStringToLength in the file svg_types.c for releases up to 2012-10-19, allowing a remote attacker to trigger a denial of service (ap...