I have just released these tarballs for old release series of librsvg: librsvg-2.40.21 librsvg-2.42.8 librsvg-2.44.16 They all contain fixes for CVE-2019-20446. You may update them at your leisure. The current stable version is librsvg-2.46.4 and that already contains the fixes (they have been there since 2.46.3). Federico
Attachment:
signature.asc
Description: This is a digitally signed message part