This update for librsvg fixes the following issues:
Update to version 2.52.12.
- CVE-2024-12224: idna: incorrect hostname comparisons and URL parsing may be performed due to acceptance of Punycode
labels that do not produce any non-ASCII output when decoded (bsc#1243867).
- CVE-2024-43806: rustix: unbounded memory explosion leading to an application OOM crash when using the
rustix::fs::Dir
iterator with the linux_raw backend (bsc#1229950).