[ubuntu/xenial-updates] librsvg 2.40.13-3ubuntu0.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Mon Jul 27 14:58:19 UTC 2020
librsvg (2.40.13-3ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: DoS via crafted SVG file
- debian/patches/CVE-2017-11464.patch: don't divide by zero in
rsvg-filter.c.
- CVE-2017-11464
* SECURITY UPDATE: DoS via nested patterns
- debian/patches/CVE-2019-20446-*.patch: multiple upstream commits.
- debian/librsvg2-2.symbols: added new symbol.
- CVE-2019-20446
Date: 2020-07-23 17:48:35.344426+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/librsvg/2.40.13-3ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list