UbuntuUpdates.org

Package "librsvg2-bin"

Name: librsvg2-bin

Description:

command-line utility to convert SVG files
Latest version: 2.48.9-1ubuntu0.20.04.4
Release: focal (20.04)
Level: updates
Repository: universe
Head package: librsvg
Homepage: https://wiki.gnome.org/Projects/LibRsvg

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "librsvg2-bin"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "librsvg2-bin" in Focal

Repository Area Version
base universe 2.48.2-1
security universe 2.48.9-1ubuntu0.20.04.4

Changelog

Version: 2.48.9-1ubuntu0.20.04.4 2023-08-01 15:07:03 UTC

  librsvg (2.48.9-1ubuntu0.20.04.4) focal-security; urgency=medium

  * SECURITY UPDATE: Arbitrary file read when xinclude href has special
    characters
    - debian/patches/CVE-2023-38633.patch: validate URLs in
      librsvg/rsvg-handle.c, rsvg_internals/src/allowed_url.rs,
      rsvg_internals/src/filters/component_transfer.rs, tests/*.
    - debian/patches/fix_old_rust_compat.patch: fix compatibility with
      older rust versions in rsvg_internals/src/allowed_url.rs.
    - CVE-2023-38633
  * Don't fail the build on tests error for i386

 -- Marc Deslauriers <email address hidden> Fri, 28 Jul 2023 08:56:58 -0400
Source diff to previous version
CVE-2023-38633 A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local

Version: 2.48.9-1ubuntu0.20.04.1 2020-12-10 12:06:57 UTC

  librsvg (2.48.9-1ubuntu0.20.04.1) focal; urgency=medium

  * SRU new upstream release to focal (LP: #1903329)

 -- Olivier Tilloy <email address hidden> Mon, 30 Nov 2020 18:08:14 +0100
Source diff to previous version
1903329 SRU the current 2.48.9 stable update

Version: 2.48.7-1ubuntu0.20.04.1 2020-07-16 10:06:42 UTC

  librsvg (2.48.7-1ubuntu0.20.04.1) focal; urgency=medium

  * SRU new upstream release to focal (LP: #1884326)

 -- Olivier Tilloy <email address hidden> Fri, 19 Jun 2020 23:19:37 +0200
1884326 SRU the current 2.48.7 stable update


About   -   Send Feedback to @ubuntu_updates