Unspecified buffer overflow vulnerability was found [1] in Skia (2D graphics engine used in Chromium). [1]: https://code.google.com/p/chromium/issues/detail?id=418161 External References: http://googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.html
Upstream commit: https://skia.googlesource.com/skia.git/+/3a49520696b2eca69e57884657d23fd2402ccfd1
This issue has been addressed in the following products: Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2014:1894 https://rhn.redhat.com/errata/RHSA-2014-1894.html
Upstream librsvg2 patch at: https://git.gnome.org/browse/librsvg/commit/?id=40af93e6eb1c94b90c3b9a0b87e0840e126bb8df
Statement: This issue did not affect the versions of librsvg2 as shipped with Red Hat Enterprise Linux 5 and 6. This issue affects the version of librsvg2 as shipped with Red Hat Enterprise Linux 7.