Cyxow

**Name of the Vulnerable Software and Affected Versions** ImageMagick (affected versions not specified) **Description** A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulting in a denial of service. When ImageMagick crashes, it generates a lot of trash files. These trash files can be large if the SVG file contains many render actions. In a denial of service attack, if a remote attacker uploads an SVG file of size t, ImageMagick generates files of size 103*t. For example, if an attacker uploads a 100M SVG, the server will generate about 10G. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CairoSVG versions prior to 2.7.0 **Description** CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service. The issue is related to insufficient validation of incoming requests when processing SVG files, which can be exploited by a remote attacker to perform SSRF attacks or cause a denial of service. Technical details about exploitation include the use of specially crafted SVG files that load external resources from URLs, which can cause the server to hang or allow an attacker to scan an organization's internal resources. **Recommendations** For versions prior to 2.7.0, update to version 2.7.0 or later to disable CairoSVG's ability to access other files online by default. As a temporary workaround, consider restricting access to external resources or disabling the ability to load external files in CairoSVG until a patch is available.