VDB

GCVE-110-MAGEIA-2015-138

GCVE-110-MAGEIA-2015-138
Advisory Published
Vulnetix · Advisory published April 9, 2015
Updated batik packages fix security vulnerability: Nicolas Gregoire and Kevin Schaller discovered that Batik would load XML external entities by default. If a user or automated system were tricked into opening a specially crafted SVG file, an attacker could possibly obtain access to arbitrary files or cause resource consumption (CVE-2015-0250).

Affected Products

VendorProductVersionsPlatforms
Mageiaiscsitarget0 (affected), 1.4.20.5-1.mga5 (unaffected)
Mageiabatik0 (affected), 1.8-0.1.svn1230816.10.mga4 (unaffected), 0 (affected), 1.8-0.1.svn1230816.10.mga4 (unaffected)

Browse GCVE Records

72,148 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›