CVE-2019-20446 (https://nvd.nist.gov/vuln/detail/CVE-2019-20446): ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
amd64 stable
x86 stable
sparc stable
s390 stable
ia64 stable
ppc64 stable
ppc stable
hppa stable
arm stable
arm64 stable, cleanup done
GLSA Vote: No Repository is clean, all done!