Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Libsvg2 Project Subscribe
Filtered by product Libsvg2
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-17333 1 Libsvg2 Project 1 Libsvg2 2020-08-24 7.5 HIGH 9.8 CRITICAL
An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in svgStringToLength in svg_types.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because sscanf is misused.
CVE-2018-17334 1 Libsvg2 Project 1 Libsvg2 2020-08-24 7.5 HIGH 9.8 CRITICAL
An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in the svgGetNextPathField function in svg_string.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because a strncpy copy limit is miscalculated.
CVE-2018-17332 1 Libsvg2 Project 1 Libsvg2 2019-10-02 5.0 MEDIUM 7.5 HIGH
An issue was discovered in libsvg2 through 2012-10-19. The svgGetNextPathField function in svg_string.c returns its input pointer in certain circumstances, which might result in a memory leak caused by wasteful malloc calls.