VDB
GCVE-110-MAGEIA-2021-234
GCVE-110-MAGEIA-2021-234
Advisory Published
This update patches the vendored `smallvec` Rust crate in librsvg to fix a security vulnerability:
The Iterator implementation mishandles destructors, leading to a double free (CVE-2021-25900).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | menulibre | 0 (affected), 2.2.3-1.mga8 (unaffected) | — |
| Mageia | librsvg | 0 (affected), 0 (affected), 2.45.5-3.2.mga7 (unaffected), 2.45.5-3.2.mga7 (unaffected) | — |
Aliases
References
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.