Hi gyara,

Thanks a lot for this security fix.

Since this will rebuild 'librsvg', which has ~550 dependent packages, I
added these patches to the about-to-be-merged 'staging' branch.

(it's not ideal either, since it is supposed to be "frozen"; but we
cannot graft Rust packages and would instead have to add a graft for a
patched librsvg, which seemed a lot of work for 'just' 550 rebuilds)

PS: In the future, please mention the changed variable in the commit
message (see the commit log for examples).  I did that on your behalf.

Pushed in:

  1063d918b9 gnu: rust-regex-syntax: Update to 0.6.27.
  1cf3737093 gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713].