Описание
ELSA-2014-0127: librsvg2 security update (updated 02/05/2014) (MODERATE)
[2.26.0-6.3]
- Fix add-permission-check.patch to update all rsvg_pixbuf_new_from_href() callers
[2.26.0-6.1]
- Fix build by linking in -lm
- io: Implement strict network policy (CVE-2013-1881) Resolves: #1049155
[2.26.0-6]
- Store node type separately in RsvgNode (CVE-2011-3146) Resolves: #735267
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
librsvg2
2.26.0-6.el6_5.2
librsvg2
2.26.0-6.el6_5.3
librsvg2-devel
2.26.0-6.el6_5.2
librsvg2-devel
2.26.0-6.el6_5.3
Oracle Linux i686
librsvg2
2.26.0-6.el6_5.2
librsvg2
2.26.0-6.el6_5.3
librsvg2-devel
2.26.0-6.el6_5.2
librsvg2-devel
2.26.0-6.el6_5.3
Связанные CVE
Связанные уязвимости
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary f ...
