VDB

GCVE-110-MAGEIA-2021-234

GCVE-110-MAGEIA-2021-234
Advisory Published
Vulnetix · Advisory published June 8, 2021
This update patches the vendored `smallvec` Rust crate in librsvg to fix a security vulnerability: The Iterator implementation mishandles destructors, leading to a double free (CVE-2021-25900).

Affected Products

VendorProductVersionsPlatforms
Mageiamenulibre0 (affected), 2.2.3-1.mga8 (unaffected)
Mageialibrsvg0 (affected), 0 (affected), 2.45.5-3.2.mga7 (unaffected), 2.45.5-3.2.mga7 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›