Update NEWS

parent 9394e520
Pipeline #26208 failed with stages
in 4 minutes and 57 seconds
Version 2.42.7
- #323 - Fix a denial-of-service condition from exponential explosion
of rendered elements, through nested use of SVG "use" elements in
malicious SVGs. This is similar to the XML "billion laughs attack"
but for SVG instancing.
Version 2.42.6
- #282 - Fix drop-shadows generated from Inkscape; we were overwriting
a surface inadvertently.
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment