CVE-2015-7557

7.5HIGH

Key Information:

Vendor: Gnome
Status: Librsvg
Vendor: CVE Published:; 20 May 2016

Summary

The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elements in a coordinate pair in an SVG document.

References

http://www.openwall.com/lists/oss-security/2015/12/21/5

mailing-listx_refsource_MLIST

https://git.gnome.org/browse/librsvg/commit/rsvg-shapes.c...

x_refsource_CONFIRM

https://git.gnome.org/browse/librsvg/tree/NEWS

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 20, 2016
Vulnerability Reserved
Sep 29, 2015