CVE-2011-3146

librsvg < 2.34.1 - Denial of Service via SVG Node Name Mismatch

Title source: llm

Description

librsvg before 2.34.1 uses the node name to identify the type of node, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference) and possibly execute arbitrary code via a SVG file with a node with the element name starting with "fe," which is misidentified as a RsvgFilterPrimitive.

References (10)

Core 10

Core References

Various Sources x_refsource_confirm

http://ftp.gnome.org/pub/GNOME/sources/librsvg/2.34/librsvg-2.34.1.news

Issue Tracking x_refsource_misc

https://bugzilla.redhat.com/show_bug.cgi?id=734936

Issue Tracking x_refsource_confirm

https://bugzilla.gnome.org/show_bug.cgi?id=658014

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/45877

Issue Tracking x_refsource_misc

https://bugs.launchpad.net/ubuntu/+source/librsvg/+bug/825497

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2011-1289.html

Exploit, Patch x_refsource_confirm

http://git.gnome.org/browse/librsvg/commit/?id=34c95743ca692ea0e44778e41a7c0a129363de84

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065739.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-September/066127.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065730.html

Scores

EPSS 0.0344

EPSS Percentile 87.6%

Details

Status published

Products (1)

gnome/librsvg < 2.34.0

Published Sep 05, 2012

Tracked Since Feb 18, 2026