Login


 
Newsletter
Werbung
Sicherheit: Denial of Service in Inkscape
Aktuelle Meldungen Distributionen
Name: Denial of Service in Inkscape
ID: FEDORA-2012-20643
Distribution: Fedora
Plattformen: Fedora 18
Datum: So, 23. Dezember 2012, 10:57
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5656

Originalnachricht

Name        : inkscape
Product : Fedora 18
Version : 0.48.4
Release : 1.fc18
URL : http://inkscape.sourceforge.net/
Summary : Vector-based drawing program using SVG
Description :
Inkscape is a vector graphics editor, with capabilities similar to
Illustrator, CorelDraw, or Xara X, using the W3C standard Scalable Vector
Graphics (SVG) file format. It is therefore a very useful tool for web
designers and as an interchange format for desktop publishing.

Inkscape supports many advanced SVG features (markers, clones, alpha
blending, etc.) and great care is taken in designing a streamlined
interface. It is very easy to edit nodes, perform complex path operations,
trace bitmaps and much more.

-------------------------------------------------------------------------------
-
Update Information:

Fix XXE flaw, man page ownership.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #888249 - CVE-2012-5656 inkscape: XXE via SVG rasterization
https://bugzilla.redhat.com/show_bug.cgi?id=888249
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update inkscape' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Frohe Ostern
Neue Nachrichten
Werbung