Gnome

Librsvg

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-38633

Exploit
  • EPSS 36.47%
  • Published 22.07.2023 17:15:09
  • Last modified 21.11.2024 08:13:58

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../et...

6.5

CVE-2019-20446

  • EPSS 0.97%
  • Published 02.02.2020 14:15:10
  • Last modified 21.11.2024 04:38:30

In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows expon...

8.8

CVE-2018-1000041

  • EPSS 0.46%
  • Published 09.02.2018 23:29:01
  • Last modified 21.11.2024 03:39:30

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers thro...

7.8

CVE-2017-11464

  • EPSS 0.27%
  • Published 19.07.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero.

5.5

CVE-2016-6163

  • EPSS 0.43%
  • Published 03.02.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

The rsvg_pattern_fix_fallback function in rsvg-paint_server.c in librsvg2 2.40.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted svg file.

7.5

CVE-2016-4348

  • EPSS 3.08%
  • Published 20.05.2016 14:59:06
  • Last modified 12.04.2025 10:46:40

The _rsvg_css_normalize_font_size function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via circular definitions in an SVG document.

7.5

CVE-2015-7558

  • EPSS 1.43%
  • Published 20.05.2016 14:59:01
  • Last modified 12.04.2025 10:46:40

librsvg before 2.40.12 allows context-dependent attackers to cause a denial of service (infinite loop, stack consumption, and application crash) via cyclic references in an SVG document.

7.5

CVE-2015-7557

  • EPSS 0.52%
  • Published 20.05.2016 14:59:00
  • Last modified 12.04.2025 10:46:40

The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elements in a coordinate pair in an SVG document.

4.3

CVE-2013-1881

  • EPSS 7.77%
  • Published 10.10.2013 00:55:03
  • Last modified 11.04.2025 00:51:21

GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

6.8

CVE-2011-3146

Exploit
  • EPSS 3.44%
  • Published 05.09.2012 23:55:01
  • Last modified 11.04.2025 00:51:21

librsvg before 2.34.1 uses the node name to identify the type of node, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference) and possibly execute arbitrary code via a SVG file with a node with the element na...