{"id":"MGASA-2021-0333","summary":"Updated libcroco and gettext packages fix security vulnerability","details":"libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core\nin cr-parser.c, leading to stack consumption (CVE-2020-12825).\n","modified":"2026-04-16T04:40:36.955580950Z","published":"2021-07-10T20:00:34Z","upstream":["CVE-2020-12825"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0333.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=27108"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2020:4072"},{"type":"REPORT","url":"https://gitlab.gnome.org/Archive/libcroco/-/issues/8"}],"affected":[{"package":{"name":"libcroco","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/libcroco?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.13-1.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0333.json"}},{"package":{"name":"gettext","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/gettext?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.19.8.1-4.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0333.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}