Univention Bugzilla – Bug 52076
(ES 4.3) librsvg
Last modified: 2020-11-30 12:21:51 CET
Provide librsvg version 2.40.21-0+deb9u1 for UCS 4.3 First imported at bug #51723 This update addresses the following issues: * SIGFPE is raised in box_blur_line function of rsvg-filter.c (CVE-2017-11464) * Resource exhaustion via crafted SVG file with nested patterns (CVE-2019-20446)
-> apt-cache policy librsvg2-2 librsvg2-2: Installiert: 2.40.21-0+deb9u1 Installationskandidat: 2.40.21-0+deb9u1 Versionstabelle: *** 2.40.21-0+deb9u1 500 500 http://192.168.0.10/build2 ucs_4.3-0-extsec4.3/amd64/ Packages
CLOSED: Released as extsec4.3 update