Oval Definition:	oval:org.mitre.oval:def:25552
Revision Date: 2014-09-08 Version: 3 Title: SUSE-SU-2013:0351-1 -- Security update for inkscape Description: inkscape was updated to fix a XXE (Xml eXternal Entity)attack during rasterization of SVG images (CVE-2012-5656),where the rendering of malicious SVG images could haveconnected from inkscape to internal hosts.Also inkscape would have loaded .EPS files from untrusted/tmp occasionaly instead from the current directory.(CVE-2012-6076) Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2012-5656 CVE-2012-6076 SUSE-SU-2013:0351-1 Platform(s): SUSE Linux Enterprise Desktop 11 Product(s): inkscape Definition Synopsis SUSE Linux Enterprise Desktop 11.x is installed AND Packages match section inkscape RPM is earlier than 0:0.46-62.38.1 OR inkscape-extensions-dia RPM is earlier than 0:0.46-62.38.1 OR inkscape-extensions-extra RPM is earlier than 0:0.46-62.38.1 OR inkscape-extensions-fig RPM is earlier than 0:0.46-62.38.1 OR inkscape-extensions-gimp RPM is earlier than 0:0.46-62.38.1 OR inkscape-lang RPM is earlier than 0:0.46-62.38.1
BACK