Bump version to 2.42.8

parent de06fe85
Pipeline #156331 failed with stages
in 2 minutes and 18 seconds
Version 2.42.8
- CVE-2019-20446 - Backport the following fixes from 2.46.x:
- #515 - Librsvg now has limits on the number of loaded XML elements,
and the number of referenced elements within an SVG document. This
is to mitigate malicious SVGs which try to consume all memory, and
those which try to consume an exponential amount of CPU time.
- #308 - Fix stack exhaustion with circular references in <use> elements.
Version 2.42.7
- #323 - Fix a denial-of-service condition from exponential explosion
of rendered elements, through nested use of SVG "use" elements in
m4_define([rsvg_lt_version_info],m4_eval(rsvg_major_version + rsvg_minor_version):rsvg_micro_version:rsvg_minor_version)
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment