A denial of service flaw was found in the way the librsvg2 library parsed SVG files. A specially crafted SVG file with circular definitions could cause an application using librsvg2 to crash.
This flaw is in the _rsvg_css_normalize_font_size() function.
Reference (including reproducer):
Created librsvg2 tracking bugs for this issue:
Affects: fedora-all [bug 1331727]
Created mingw-librsvg2 tracking bugs for this issue:
Affects: fedora-all [bug 1331728]
This fix is two commits before the other commit.