VDB
GCVE-110-MAGEIA-2020-159
GCVE-110-MAGEIA-2020-159
Advisory Published
The updated packages fix a security vulnerability:
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested
patterns can cause denial of service when passed to the library for
processing. The attacker constructs pattern elements so that the number
of final rendered objects grows exponentially. (CVE-2019-20446)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | ipset | 0 (affected), 7.6-1.mga7 (unaffected) | — |
| Mageia | librsvg | 2.45.5-3.1.mga7 (unaffected), 0 (affected), 0 (affected), 2.45.5-3.1.mga7 (unaffected) | — |
Aliases
References
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.