Oval Definition:	oval:org.opensuse.security:def:79860
Revision Date: 2013-02-20 Version: 1 Title: Security update for inkscape Description: inkscape was updated to fix a XXE (Xml eXternal Entity) attack during rasterization of SVG images (CVE-2012-5656), where the rendering of malicious SVG images could have connected from inkscape to internal hosts. * Also inkscape would have loaded .EPS files from untrusted /tmp occasionaly instead from the current directory. (CVE-2012-6076) Security Issue references: * CVE-2012-6076 * CVE-2012-5656 Family: unix Class: patch Status: Reference(s): 794958 796306 CVE-2012-5656 CVE-2012-6076 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information inkscape-0.46-62.38.1 is installed OR inkscape-extensions-dia-0.46-62.38.1 is installed OR inkscape-extensions-extra-0.46-62.38.1 is installed OR inkscape-extensions-fig-0.46-62.38.1 is installed OR inkscape-extensions-gimp-0.46-62.38.1 is installed OR inkscape-lang-0.46-62.38.1 is installed
BACK