openSUSE Security Update : perl-Image-Info (openSUSE-2017-327)
Medium Nessus Plugin ID 97710
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for perl-Image-Info fixes the following issues :
- update to version 1.39 to fix a potential security issue. A crafted SVG file could have caused information disclosure or denial of service by using external entitity expansion (XXE). This is a potentially incompatible change; however usually SVG files do not rely on XXE. (boo#1008647, CVE-2016-9181)
SolutionUpdate the affected perl-Image-Info package.