SB2020013122 - Denial of service in librsvg

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Infinite loop (CVE-ID: N/A)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in when processing CSS sibling combinators. A remote attacker can consume all available system resources and cause denial of service conditions.

2) Resource exhaustion (CVE-ID: CVE-2019-20446)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect processing of nested patterns within SVG files in xml.rs in GNOME librsvg. A remote attacker can create a specially crafted SVG file, pass if to the affected application, trigger resource exhaustion and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://gitlab.gnome.org/GNOME/librsvg/blob/master/NEWS
• https://gitlab.gnome.org/GNOME/librsvg/issues/515