blob: 345ac9b6540ba6aeba9f3bea9ecf05959f0f516c (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>(Note <a href="https://security-tracker.debian.org/tracker/CVE-2016-4347">CVE-2016-4347</a> is a duplicate of <a href="https://security-tracker.debian.org/tracker/CVE-2015-7558">CVE-2015-7558</a>)</p>
<p>Two DoS in librsvg 2.40.2 parsing SVGs with circular definitions were
found (they will produce stack exhaustion) by Gustavo Grieco.</p>
<p>The version in wheezy (2.36.1-2+deb7u1) is also vulnerable.</p>
<p>For Debian 7 <q>Wheezy</q>, these problems have been fixed in version
2.36.1-2+deb7u2.</p>
<p>We recommend that you upgrade your librsvg packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2016/dla-477.data"
# $Id: $
|
