{"id":"CVE-2015-7557","details":"The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elements in a coordinate pair in an SVG document.","modified":"2026-01-27T04:14:03.206023Z","published":"2016-05-20T14:59:00Z","withdrawn":"2026-01-27T04:14:03.206023Z","related":["MGASA-2016-0021"],"references":[{"type":"ADVISORY","url":"https://git.gnome.org/browse/librsvg/commit/rsvg-shapes.c?id=40af93e6eb1c94b90c3b9a0b87e0840e126bb8df"},{"type":"ADVISORY","url":"https://git.gnome.org/browse/librsvg/tree/NEWS"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2015/12/21/5"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}