When URL parsers disagree (CVE-2023-38633) - Canva Engineering Blog
https://www.canva.dev/blog/engineering/when-url-parsers-disagree-cve-2023-38633/
Discovery and walkthrough of CVE-2023-38633 in librsvg, when two URL parser implementations (Rust and Glib) disagree on file scheme parsing leading to path traversal.