Debian Security Advisory DSA 916-1 - Several vulnerabilities have been discovered in Inkscape, a vector-based drawing program. Joxean Koret discovered a buffer overflow in the SVG parsing routines that can lead to the execution of arbitrary code. Javier Fernandez-Sanguino Pena noticed that the ps2epsi extension shell script uses a hardcoded temporary file making it vulnerable to symlink attacks.
38273c7b5d3c2d0deb14c0e5d98b4a70c307ff98657d2510c45f19fd1d6c8b6a