Red Hat Bugzilla – Bug 1268243
CVE-2015-7558 librsvg2: Stack exhaustion causing DoS
Last modified: 2016-07-04 01:11:38 EDT
A vulnerability causing stack exhaustion leading to DoS was found in librsvg2 when parsing SVG file.
Acknowledgements: Red Hat would like to thank Gustavo Grieco for reporting this issue.
I don't believe that firefox is using librsvg to parse files that are loaded from the net.
yes, I believe this was fixed by rewriting the way librsvg checks for cyclic references.
Created librsvg2 tracking bugs for this issue: Affects: fedora-all [bug 1293346]
Created mingw-librsvg2 tracking bugs for this issue: Affects: fedora-all [bug 1293347]
*** Bug 1331724 has been marked as a duplicate of this bug. ***