Lucene search
MitreCVELIST:CVE-2019-20446HistoryFeb 02, 2020 - 12:00 a.m.
CVE-2019-20446
2020-02-0200:00:00
mitre
www.cve.org
8
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
References
lists.opensuse.org/opensuse-security-announce/2020-03/msg00024.html
gitlab.gnome.org/GNOME/librsvg/issues/515
lists.debian.org/debian-lts-announce/2020/07/msg00016.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3B5RWJQD5LA45MYLLR55KZJOJ5NVZGP/
security.netapp.com/advisory/ntap-20221111-0004/
usn.ubuntu.com/4436-1/
Related
alpinelinux
alpinelinux
CVE-2019-20446
2020-02-02 14:15:10
nessus
nessus
NewStart CGSL MAIN 6.02 : librsvg2 Vulnerability (NS-SA-2021-0065)
2021-03-10 00:00:00
SUSE SLES12 Security Update : librsvg (SUSE-SU-2020:0604-1)
2020-03-09 00:00:00
Rocky Linux 8 : librsvg2 (RLSA-2020:4709)
2023-11-07 00:00:00
freebsd
freebsd
librsvg2 -- multiple vulnerabilities
2020-02-26 00:00:00
oraclelinux
oraclelinux
librsvg2 security update
2020-11-10 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:0604-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for librsvg (openSUSE-SU-2020:0343-1)
2020-03-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0629-2)
2021-06-09 00:00:00
prion
prion
Design/Logic Flaw
2020-02-02 14:15:00
redhatcve
redhatcve
CVE-2019-20446
2020-02-03 14:18:18
rocky
rocky
librsvg2 security update
2020-11-03 12:29:09
almalinux
almalinux
Moderate: librsvg2 security update
2020-11-03 12:29:09
debiancve
debiancve
CVE-2019-20446
2020-02-02 14:15:10
mageia
mageia
Updated librsvg packages fix security vulnerability
2020-04-05 20:07:15
osv
osv
CVE-2019-20446
2020-02-02 14:15:10
Moderate: librsvg2 security update
2020-11-03 12:29:09
Moderate: librsvg2 security update
2020-11-03 12:29:09
nvd
nvd
CVE-2019-20446
2020-02-02 14:15:10
suse
suse
Security update for librsvg (moderate)
2020-03-15 00:00:00
ubuntucve
ubuntucve
CVE-2019-20446
2020-02-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:18:39
redhat
redhat
(RHSA-2020:4709) Moderate: librsvg2 security update
2020-11-03 12:29:09
cve
cve
CVE-2019-20446
2020-02-02 14:15:10
debian
debian
[SECURITY] [DLA 2285-1] librsvg security update
2020-07-22 11:06:01
ubuntu
ubuntu
librsvg vulnerabilities
2020-07-27 00:00:00
librsvg regression
2020-07-29 00:00:00
cloudfoundry
cloudfoundry
USN-4436-2: librsvg regression | Cloud Foundry
2020-08-27 00:00:00
USN-4436-1: librsvg vulnerabilities | Cloud Foundry
2020-08-27 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: chromium-80.0.3987.132-1.fc31
2020-03-20 01:51:25
[SECURITY] Fedora 30 Update: chromium-80.0.3987.149-1.fc30
2020-03-27 10:46:23