Bug 2088221 (CVE-2021-42704) - CVE-2021-42704 inkscape: out-of-bounds write vulnerbility in inkscape
Summary: CVE-2021-42704 inkscape: out-of-bounds write vulnerbility in inkscape
Status: NEW
Alias: CVE-2021-42704
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Nobody
QA Contact:
Depends On: 2096831 2096832 2096833 2096834 2096835 2096836
Blocks: 2088223
TreeView+ depends on / blocked
Reported: 2022-05-19 03:51 UTC by Sandipan Roy
Modified: 2023-07-07 08:27 UTC (History)
7 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
A flaw was found in Inkscape, which is vulnerable to an out-of-bounds write. This flaw allows an attacker to execute arbitrary code.
Clone Of:
Last Closed:

Attachments (Terms of Use)

Description Sandipan Roy 2022-05-19 03:51:15 UTC
Inkscape version 0.19 is vulnerable to an out-of-bounds write, which may allow an attacker to arbitrary execute code.


Comment 1 Sandipan Roy 2022-06-14 11:58:34 UTC
Created inkscape tracking bugs for this issue:

Affects: fedora-all [bug 2096831]

Comment 3 Jan Horak 2022-08-04 14:17:38 UTC
We have inkscape 0.92 in the RHEL, so since this affects 0.91 I don't think we are affected, or do you think otherwise?

Note You need to log in before you can comment on or make changes to this bug.