Scientific Linux Security Update : librsvg2 on SL6.x i386/x86_64
Medium Nessus Plugin ID 72275
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionAn XML External Entity expansion flaw was found in the way librsvg2 processed SVG files. If a user were to open a malicious SVG file, a remote attacker could possibly obtain a copy of the local resources that the user had access to. (CVE-2013-1881)
All running applications that use librsvg2 must be restarted for this update to take effect.
SolutionUpdate the affected librsvg2, librsvg2-debuginfo and / or librsvg2-devel packages.