Security Advisory Moderate: librsvg2 security update

Advisory: RHSA-2014:0127-4
Type: Security Advisory
Severity: Moderate
Issued on: 2014-02-03
Last updated on: 2014-02-04
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-1881

Details

Updated librsvg2 packages that fix one security issue are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

[Updated Feb 4, 2014]
The original packages distributed with this advisory contained a bug that
caused applications using librsvg2 to crash when loading certain SVG
images. We have updated the packages to correct this bug.

The librsvg2 packages provide an SVG (Scalable Vector Graphics) library
based on libart.

An XML External Entity expansion flaw was found in the way librsvg2
processed SVG files. If a user were to open a malicious SVG file, a remote
attacker could possibly obtain a copy of the local resources that the user
had access to. (CVE-2013-1881)

All librsvg2 users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. All running applications
that use librsvg2 must be restarted for this update to take effect.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
IA-32:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
IA-32:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
 
PPC:
librsvg2-2.26.0-6.el6_5.3.ppc.rpm
File outdated by:  RHBA-2014:1554
    MD5: 9f4298892f0e58b9554dee98b344ff53
SHA-256: befa8e5616a775f2b45b028eb4dfe8497803401950ff3e290898d3906bb0a624
librsvg2-2.26.0-6.el6_5.3.ppc64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 86889143825e375cbbf25c4979904196
SHA-256: a0a71b1a2cfcc964ccf285a66cb260054a0766f6c6e5498ef2bbd107efca131a
librsvg2-debuginfo-2.26.0-6.el6_5.3.ppc.rpm
File outdated by:  RHBA-2014:1554
    MD5: 5920123c7f23b937fa8a799017762f9c
SHA-256: 0f73ce5e3bd042b850bc09ed0f54d63455f35614d3ca360a589432e05e0bd3a0
librsvg2-debuginfo-2.26.0-6.el6_5.3.ppc64.rpm
File outdated by:  RHBA-2014:1554
    MD5: b66843181f92bca24b57cffe588eb46d
SHA-256: dcdf4a69c737e19ae6f52de7f1be6f1056a4afea7df9e9c9ea4b6b15a19c17c8
librsvg2-devel-2.26.0-6.el6_5.3.ppc.rpm
File outdated by:  RHBA-2014:1554
    MD5: d637e1bda2527c8662b87303613ef473
SHA-256: d1b7d65fc2b92651e85a018693ada2e3ef3fd29162cf3466f72943e68719af61
librsvg2-devel-2.26.0-6.el6_5.3.ppc64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 65a03a77dfcee0eac576e21c40379e3b
SHA-256: 72ebd81660de439e60e85a74132d28f8ee8ad6d72a6d2f7eb1bd4667d028c43e
 
s390x:
librsvg2-2.26.0-6.el6_5.3.s390.rpm
File outdated by:  RHBA-2014:1554
    MD5: 3ffe4729e706ef8029f7cf696118b5c3
SHA-256: f2f255a6a2d37af2ad236281998128e261815d547b12b40caef27744122855f5
librsvg2-2.26.0-6.el6_5.3.s390x.rpm
File outdated by:  RHBA-2014:1554
    MD5: ecefb55e9f1ad8bd8b6ea1382dfd6276
SHA-256: 261757159c360fdde8f75ac8a25e80fa4db8dd7c744d1ce29111bcef4b318168
librsvg2-debuginfo-2.26.0-6.el6_5.3.s390.rpm
File outdated by:  RHBA-2014:1554
    MD5: 6f68260d6f9f7c20e1b21ee8ffae8e3e
SHA-256: 50445c886b54ac5f64b7671c7210b3dd8fdc5c2dcd562193972b90834bdf6cfa
librsvg2-debuginfo-2.26.0-6.el6_5.3.s390x.rpm
File outdated by:  RHBA-2014:1554
    MD5: b0b63bc0510d8ca18452d4cf661d2f18
SHA-256: 1515b2052bfaa866c70f99a30cc6a253bd80d0dfae4e9fa06504086759850edf
librsvg2-devel-2.26.0-6.el6_5.3.s390.rpm
File outdated by:  RHBA-2014:1554
    MD5: 9f137f567df43cbde53f87ff370adb1a
SHA-256: e330124e9d9dd4c0097c79f2d26e49183f0cba7abfad0366cfcdf5b8b8c34bfd
librsvg2-devel-2.26.0-6.el6_5.3.s390x.rpm
File outdated by:  RHBA-2014:1554
    MD5: 4111c8ac2736bc58e806082295d02bfb
SHA-256: 9e77f1f3e26b360b471d17e99965a581aae75aab1e3982c9886b3c9a7687c90d
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm     MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm     MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm     MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm     MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm     MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm     MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
IA-32:
librsvg2-2.26.0-6.el6_5.3.i686.rpm     MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm     MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm     MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
 
PPC:
librsvg2-2.26.0-6.el6_5.3.ppc.rpm     MD5: 9f4298892f0e58b9554dee98b344ff53
SHA-256: befa8e5616a775f2b45b028eb4dfe8497803401950ff3e290898d3906bb0a624
librsvg2-2.26.0-6.el6_5.3.ppc64.rpm     MD5: 86889143825e375cbbf25c4979904196
SHA-256: a0a71b1a2cfcc964ccf285a66cb260054a0766f6c6e5498ef2bbd107efca131a
librsvg2-debuginfo-2.26.0-6.el6_5.3.ppc.rpm     MD5: 5920123c7f23b937fa8a799017762f9c
SHA-256: 0f73ce5e3bd042b850bc09ed0f54d63455f35614d3ca360a589432e05e0bd3a0
librsvg2-debuginfo-2.26.0-6.el6_5.3.ppc64.rpm     MD5: b66843181f92bca24b57cffe588eb46d
SHA-256: dcdf4a69c737e19ae6f52de7f1be6f1056a4afea7df9e9c9ea4b6b15a19c17c8
librsvg2-devel-2.26.0-6.el6_5.3.ppc.rpm     MD5: d637e1bda2527c8662b87303613ef473
SHA-256: d1b7d65fc2b92651e85a018693ada2e3ef3fd29162cf3466f72943e68719af61
librsvg2-devel-2.26.0-6.el6_5.3.ppc64.rpm     MD5: 65a03a77dfcee0eac576e21c40379e3b
SHA-256: 72ebd81660de439e60e85a74132d28f8ee8ad6d72a6d2f7eb1bd4667d028c43e
 
s390x:
librsvg2-2.26.0-6.el6_5.3.s390.rpm     MD5: 3ffe4729e706ef8029f7cf696118b5c3
SHA-256: f2f255a6a2d37af2ad236281998128e261815d547b12b40caef27744122855f5
librsvg2-2.26.0-6.el6_5.3.s390x.rpm     MD5: ecefb55e9f1ad8bd8b6ea1382dfd6276
SHA-256: 261757159c360fdde8f75ac8a25e80fa4db8dd7c744d1ce29111bcef4b318168
librsvg2-debuginfo-2.26.0-6.el6_5.3.s390.rpm     MD5: 6f68260d6f9f7c20e1b21ee8ffae8e3e
SHA-256: 50445c886b54ac5f64b7671c7210b3dd8fdc5c2dcd562193972b90834bdf6cfa
librsvg2-debuginfo-2.26.0-6.el6_5.3.s390x.rpm     MD5: b0b63bc0510d8ca18452d4cf661d2f18
SHA-256: 1515b2052bfaa866c70f99a30cc6a253bd80d0dfae4e9fa06504086759850edf
librsvg2-devel-2.26.0-6.el6_5.3.s390.rpm     MD5: 9f137f567df43cbde53f87ff370adb1a
SHA-256: e330124e9d9dd4c0097c79f2d26e49183f0cba7abfad0366cfcdf5b8b8c34bfd
librsvg2-devel-2.26.0-6.el6_5.3.s390x.rpm     MD5: 4111c8ac2736bc58e806082295d02bfb
SHA-256: 9e77f1f3e26b360b471d17e99965a581aae75aab1e3982c9886b3c9a7687c90d
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm     MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm     MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm     MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm     MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm     MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm     MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
librsvg2-2.26.0-6.el6_5.3.src.rpm
File outdated by:  RHBA-2014:1554
    MD5: e062f61149a577881034300bd25d5736
SHA-256: e3131790aa8c7d59718e0847556767c988c1db577dfd87e70792bbd8de0304b9
 
IA-32:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
 
x86_64:
librsvg2-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2ae5d707a6b80983e6c20e59a48ad65d
SHA-256: 9b6d5727d2fdf774a549e193dcb1dd1482f6cca2721b90dd080721245cec2c01
librsvg2-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 2c6b524e38b86c9b84ed33af3399b33d
SHA-256: 52e08960271e009fcd12fdafbff04446efc0c3fad3291dc640ae8a984110a256
librsvg2-debuginfo-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: bc8666e359ec6175b1965e0298eb843a
SHA-256: 7db01ebd751c6a0effcc6e8320f2ed6451240d2241202e92d50e8072ad310527
librsvg2-debuginfo-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: 88f5f302b52039749c96b87abda139b7
SHA-256: 120c1a9080e0fd0e207d5fd0c7f024d12809cd055d97c3d2be7c4ac59a35fcaf
librsvg2-devel-2.26.0-6.el6_5.3.i686.rpm
File outdated by:  RHBA-2014:1554
    MD5: 70b49442ef78dfe9de59812a180ca7bd
SHA-256: 4e9738664e1668f31aac633cadbd19118019c4a48621793436346e94327fe70e
librsvg2-devel-2.26.0-6.el6_5.3.x86_64.rpm
File outdated by:  RHBA-2014:1554
    MD5: b58a0aba10a54e80e6d60db4e9d5be67
SHA-256: 7afbb85b48d1bb7c4ef17199f7a57bc5407ae80bfb2c9fbf0792898641127fda
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

924414 - CVE-2013-1881 librsvg2: local resource access vulnerability due to XML External Entity enablement


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/