CVE-2019-20446
published 2020-02-02CVE-2019-20446: In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The…
PriorityP428medium6.5CVSS 3.1
AVNACLPRNUIRSUCNINAH
EPSS
2.13%
79.6th percentile
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | librsvg | < librsvg 2.46.4-1 (bookworm) | librsvg 2.46.4-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| gnome | librsvg | < 2.40.21 | 2.40.21 |
| gnome | librsvg | >= 0 < 2.46.4-1 | 2.46.4-1 |
| gnome | librsvg | >= 0 < 2.46.4-1 | 2.46.4-1 |
| gnome | librsvg | >= 0 < 2.46.4-1 | 2.46.4-1 |
| gnome | librsvg | >= 0 < 2.46.4-1 | 2.46.4-1 |
| gnome | librsvg | >= 0 < 2.40.13-3ubuntu0.2 | 2.40.13-3ubuntu0.2 |
| gnome | librsvg | >= 0 < 2.40.13-3ubuntu0.1 | 2.40.13-3ubuntu0.1 |
| gnome | librsvg | >= 0 < 2.40.20-2ubuntu0.2 | 2.40.20-2ubuntu0.2 |
| gnome | librsvg | >= 0 < 2.40.20-2ubuntu0.1 | 2.40.20-2ubuntu0.1 |
| gnome | librsvg | >= 2.42.0 < 2.42.8 | 2.42.8 |
| gnome | librsvg | >= 2.44.0 < 2.44.16 | 2.44.16 |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv7.8HIGH
vendor_ubuntu7.8HIGH
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-whvx-2m69-j66g: In xml
ghsa_unreviewed·2022-05-24
CVE-2019-20446 [MEDIUM] CWE-400 GHSA-whvx-2m69-j66g: In xml
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
OSV
librsvg regression
osv·2020-07-29·CVSS 7.8
CVE-2017-11464 [HIGH] librsvg regression
librsvg regression
USN-4436-1 fixed a vulnerability in librsvg. The upstream fix caused a
regression when parsing certain SVG files. This update backs out the fix
pending further investigation.
Original advisory details:
It was discovered that librsvg incorrectly handled parsing certain SVG
files. A remote attacker could possibly use this issue to cause librsvg to
crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS. (CVE-2017-11464)
It was discovered that librsvg incorrectly handled parsing certain SVG
files with nested patterns. A remote attacker could possibly use this issue
to cause librsvg to consume resources and crash, resulting in a denial of
service. (CVE-2019-20446)
OSV
librsvg vulnerabilities
osv·2020-07-27·CVSS 7.8
CVE-2017-11464 [HIGH] librsvg vulnerabilities
librsvg vulnerabilities
It was discovered that librsvg incorrectly handled parsing certain SVG
files. A remote attacker could possibly use this issue to cause librsvg to
crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS. (CVE-2017-11464)
It was discovered that librsvg incorrectly handled parsing certain SVG
files with nested patterns. A remote attacker could possibly use this issue
to cause librsvg to consume resources and crash, resulting in a denial of
service. (CVE-2019-20446)
OSV
CVE-2019-20446: In xml
osv·2020-02-02·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446: In xml
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
Ubuntu
librsvg regression
vendor_ubuntu·2020-07-29·CVSS 7.8
[HIGH] librsvg regression
Title: librsvg regression
Summary: USN-4436-1 introduced a regression in librsvg.
USN-4436-1 fixed a vulnerability in librsvg. The upstream fix caused a
regression when parsing certain SVG files. This update backs out the fix
pending further investigation.
Original advisory details:
It was discovered that librsvg incorrectly handled parsing certain SVG
files. A remote attacker could possibly use this issue to cause librsvg to
crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS. (CVE-2017-11464)
It was discovered that librsvg incorrectly handled parsing certain SVG
files with nested patterns. A remote attacker could possibly use this issue
to cause librsvg to consume resources and crash, resulting in a denial of
service. (CVE-2019-20446)
Instructions: Af
Ubuntu
librsvg vulnerabilities
vendor_ubuntu·2020-07-27·CVSS 7.8
CVE-2019-20446 [HIGH] librsvg vulnerabilities
Title: librsvg vulnerabilities
Summary: librsvg could be made to crash if it opened a specially crafted file.
It was discovered that librsvg incorrectly handled parsing certain SVG
files. A remote attacker could possibly use this issue to cause librsvg to
crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS. (CVE-2017-11464)
It was discovered that librsvg incorrectly handled parsing certain SVG
files with nested patterns. A remote attacker could possibly use this issue
to cause librsvg to consume resources and crash, resulting in a denial of
service. (CVE-2019-20446)
Instructions: After a standard system update you need to restart your session to make all
the necessary changes.
Red Hat
librsvg: Resource exhaustion via crafted SVG file with nested patterns
vendor_redhat·2020-02-02·CVSS 6.5
CVE-2019-20446 [MEDIUM] CWE-400 librsvg: Resource exhaustion via crafted SVG file with nested patterns
librsvg: Resource exhaustion via crafted SVG file with nested patterns
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
Statement: This flaw is similar to billion laughs. A specially-crafted XML file can cause librsvg to consume excessive memory and result in denial of service. This flaw also affects browsers. Currently Mozilla and Google are working on updates for Firefox and Chromium browser respectively.
Mitigation: This flaw is triggered when untrusted XML files are parsed with applications compiled with librsvg2 library. Applications which do not parse untrusted XML files ar
Debian
CVE-2019-20446: librsvg - In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested pattern...
vendor_debian·2019·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446: librsvg - In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested pattern...
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
Scope: local
bookworm: resolved (fixed in 2.46.4-1)
bullseye: resolved (fixed in 2.46.4-1)
forky: resolved (fixed in 2.46.4-1)
sid: resolved (fixed in 2.46.4-1)
trixie: resolved (fixed in 2.46.4-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [epel-all]
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [epel-all]
CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects
Bugzilla
CVE-2019-20446 thunderbird: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 thunderbird: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
CVE-2019-20446 thunderbird: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue a
Bugzilla
CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
CVE-2019-20446 chromium: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affe
Bugzilla
CVE-2019-20446 librsvg: Resource exhaustion via crafted SVG file with nested patterns
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 librsvg: Resource exhaustion via crafted SVG file with nested patterns
CVE-2019-20446 librsvg: Resource exhaustion via crafted SVG file with nested patterns
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause denial of service when passed to the library for processing. The attacker constructs pattern elements so that the number of final rendered objects grows exponentially.
Upstream issue:
https://gitlab.gnome.org/GNOME/librsvg/issues/515
Discussion:
Created chromium tracking bugs for this issue:
Affects: epel-all [bug 1797611]
Affects: fedora-all [bug 1797610]
Created firefox tracking bugs for this issue:
Affects: fedora-all [bug 1797613]
Created librsvg2 tracking bugs for this issue:
Affects: fedora-all [bug 1797609]
Created thunderbird tracking bugs for this issue:
Affects: fedora-all [bug 1797614]
--
Bugzilla
CVE-2019-20446 firefox: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 firefox: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
CVE-2019-20446 firefox: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affec
Bugzilla
CVE-2019-20446 librsvg2: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
bugzilla·2020-02-03·CVSS 6.5
CVE-2019-20446 [MEDIUM] CVE-2019-20446 librsvg2: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
CVE-2019-20446 librsvg2: librsvg: Resource exhaustion via crafted SVG file with nested patterns [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affe
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00024.htmlhttps://gitlab.gnome.org/GNOME/librsvg/issues/515https://lists.debian.org/debian-lts-announce/2020/07/msg00016.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3B5RWJQD5LA45MYLLR55KZJOJ5NVZGP/https://security.netapp.com/advisory/ntap-20221111-0004/https://usn.ubuntu.com/4436-1/http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00024.htmlhttps://gitlab.gnome.org/GNOME/librsvg/issues/515https://lists.debian.org/debian-lts-announce/2020/07/msg00016.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3B5RWJQD5LA45MYLLR55KZJOJ5NVZGP/https://security.netapp.com/advisory/ntap-20221111-0004/https://usn.ubuntu.com/4436-1/
2020-02-02
Published