This page lists publicly disclosed CVE vulnerabilities affecting libsvg2_project libsvg2 (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-17334 | An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in the svgGetNextPathField function in svg_string.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because a strncpy copy limit is miscalculated. | [email protected] | 9.8 | 1.02% | 2018-09-22 | 2024-11-21 |
| CVE-2018-17333 | An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in svgStringToLength in svg_types.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because sscanf is misused. | [email protected] | 9.8 | 0.82% | 2018-09-22 | 2024-11-21 |
| CVE-2018-17332 | An issue was discovered in libsvg2 through 2012-10-19. The svgGetNextPathField function in svg_string.c returns its input pointer in certain circumstances, which might result in a memory leak caused by wasteful malloc calls. | [email protected] | 7.5 | 0.33% | 2018-09-22 | 2024-11-21 |