GLSA 202003-11 : SVG Salamander: Server-Side Request Forgery

Gentoo 2509 Published 2020-03-14 16:32 by Philipp Esselbach

News

A SVG Salamander security update has been released for Gentoo Linux.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 202003-11
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: SVG Salamander: Server-Side Request Forgery
Date: March 14, 2020
Bugs: #607720
ID: 202003-11

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

A SSRF may allow remote attackers to forge illegitimate requests.

Background
==========

SVG Salamander is a light weight SVG renderer and animator for Java.

Affected packages
=================

-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-java/svgsalamander

HiBit Uninstaller 2.3.40 released

GLSA 202003-17 : nfdump: Multiple vulnerabilities

GLSA 202003-11 : SVG Salamander: Server-Side Request Forgery

Windows

Linux

macOS

Community