UbuntuUpdates.org

Package "librsvg"

Name: librsvg

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • gir files for renderer library for SVG files
  • SAX-based renderer library for SVG files (runtime)
  • command-line and graphical viewers for SVG files
  • SAX-based renderer library for SVG files (extra runtime)

Latest version: 2.36.1-0ubuntu1.1
Release: precise (12.04)
Level: security
Repository: main

Links



Other versions of "librsvg" in Precise

Repository Area Version
base main 2.36.1-0ubuntu1
updates main 2.36.1-0ubuntu1.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.36.1-0ubuntu1.1 2014-03-17 12:07:30 UTC

  librsvg (2.36.1-0ubuntu1.1) precise-security; urgency=medium

  * SECURITY UPDATE: arbitrary file disclosure via XML External Entity
    (XXE) issue.
    - debian/patches/CVE-2013-1881.patch: implement stricter policy in
      rsvg-base.c, rsvg-css.c, rsvg-io.c, rsvg-private.h.
    - debian/control*: added appropriate Breaks as this updates requires
      a fix to also be added to gtk+3.0.
    - CVE-2013-1881
 -- Marc Deslauriers <email address hidden> Fri, 14 Mar 2014 08:57:18 -0400

CVE-2013-1881 GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary ...



About   -   Send Feedback to @ubuntu_updates