Source: svgpp Severity: grave Tags: security Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6246
It will also be affected by CVE-2019-6247 and CVE-2019-6245, as agg doesn't provide a shared library... So make sure to add a versioned build-deps on the fixed agg when that's done. Cheers, Moritz