Debian Libxslt vulnerabilities

34 known vulnerabilities affecting debian/libxslt.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL4HIGH13MEDIUM7LOW10

Vulnerabilities

Page 2 of 2

CVE-2016-1841HIGHCVSS 8.8fixed in libxslt 1.1.29-1 (bookworm)2016

CVE-2016-1841 [HIGH] CVE-2016-1841: libxslt - libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2... libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site. Scope: local bookworm: resolved (fixed in 1.1.29-1) bullseye: resolved (fixed in 1.1.29-1) forky: resolved (fixed in 1.1.29-1) sid: resol

debian

CVE-2015-7995MEDIUMCVSS 5.0fixed in libxslt 1.1.28-2.1 (bookworm)2015

CVE-2015-7995 [MEDIUM] CVE-2015-7995: libxslt - The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check i... The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue. Scope: local bookworm: resolved (fixed in 1.1.28-2.1) bullseye: resolved (fixed in 1.1.28-2.1) forky: resolved (fixed in 1.1.28-2.1) sid: reso

debian

CVE-2015-9019LOWCVSS 5.32015

CVE-2015-9019 [MEDIUM] CVE-2015-9019: libxslt - In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialize... In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

debian

CVE-2013-2902LOWCVSS 7.52013

CVE-2013-2902 [HIGH] CVE-2013-2902: libxslt - Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in... Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to an applyXSLTransform call involving (1) an HTML document or (2) an xsl:processing-instruction element that is still in

debian

CVE-2013-4520LOWCVSS 5.02013

CVE-2013-4520 [MEDIUM] CVE-2013-4520: libxslt - xslt.c in libxslt before 1.1.25 allows context-dependent attackers to cause a de... xslt.c in libxslt before 1.1.25 allows context-dependent attackers to cause a denial of service (crash) via a stylesheet that embeds a DTD, which causes a structure to be accessed as a different type. NOTE: this issue is due to an incomplete fix for CVE-2012-2825. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

debian

CVE-2012-2871MEDIUMCVSS 6.8fixed in libxslt 1.1.26-14 (bookworm)2012

CVE-2012-2871 [MEDIUM] CVE-2012-2871: libxslt - libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, doe... libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h. Scope: local

debian

CVE-2012-2870MEDIUMCVSS 4.3fixed in libxslt 1.1.26-14 (bookworm)2012

CVE-2012-2870 [MEDIUM] CVE-2012-2870: libxslt - libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180.89, does n... libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly manage memory, which might allow remote attackers to cause a denial of service (application crash) via a crafted XSLT expression that is not properly identified during XPath navigation, related to (1) the xsltCompileLocationPathPattern function in libxslt/pattern.c and (2) th

debian

CVE-2012-6139MEDIUMCVSS 5.0fixed in libxslt 1.1.26-14.1 (bookworm)2012

CVE-2012-6139 [MEDIUM] CVE-2012-6139: libxslt - libxslt before 1.1.28 allows remote attackers to cause a denial of service (NULL... libxslt before 1.1.28 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an (1) empty match attribute in a XSL key to the xsltAddKey function in keys.c or (2) uninitialized variable to the xsltDocumentFunction function in functions.c. Scope: local bookworm: resolved (fixed in 1.1.26-14.1) bullseye: resolved (fixed in 1.1.26

debian

CVE-2012-2893MEDIUMCVSS 6.8fixed in libxslt 1.1.26-14 (bookworm)2012

CVE-2012-2893 [MEDIUM] CVE-2012-2893: libxslt - Double free vulnerability in libxslt, as used in Google Chrome before 22.0.1229.... Double free vulnerability in libxslt, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XSL transforms. Scope: local bookworm: resolved (fixed in 1.1.26-14) bullseye: resolved (fixed in 1.1.26-14) forky: resolved (fixed in 1.1.26-14) sid: resolved (fixed

debian

CVE-2012-2825LOWCVSS 5.0fixed in libxslt 1.1.26-13 (bookworm)2012

CVE-2012-2825 [MEDIUM] CVE-2012-2825: libxslt - The XSL implementation in Google Chrome before 20.0.1132.43 allows remote attack... The XSL implementation in Google Chrome before 20.0.1132.43 allows remote attackers to cause a denial of service (incorrect read operation) via unspecified vectors. Scope: local bookworm: resolved (fixed in 1.1.26-13) bullseye: resolved (fixed in 1.1.26-13) forky: resolved (fixed in 1.1.26-13) sid: resolved (fixed in 1.1.26-13) trixie: resolved (fixed in 1.1.26-13)

debian

CVE-2011-3970LOWCVSS 4.3fixed in libxslt 1.1.26-11 (bookworm)2011

CVE-2011-3970 [MEDIUM] CVE-2011-3970: libxslt - libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to... libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Scope: local bookworm: resolved (fixed in 1.1.26-11) bullseye: resolved (fixed in 1.1.26-11) forky: resolved (fixed in 1.1.26-11) sid: resolved (fixed in 1.1.26-11) trixie: resolved (fixed in 1.1.26-11)

debian

CVE-2011-1202LOWCVSS 4.3fixed in libxslt 1.1.26-7 (bookworm)2011

CVE-2011-1202 [MEDIUM] CVE-2011-1202: libxslt - The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier... The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function. Scope: local bookworm: resolved (fixed in 1.1.2

debian

CVE-2008-1767HIGHCVSS 7.5PoCfixed in libxslt 1.1.24-1 (bookworm)2008

CVE-2008-1767 [HIGH] CVE-2008-1767: libxslt - Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent a... Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps. Scope: local bookworm: resolved (fixed in 1.1.24-1) bullseye: resolved (fixed in 1.1.24-1)

debian

CVE-2008-2935HIGHCVSS 7.5PoCfixed in libxslt 1.1.24-2 (bookworm)2008

CVE-2008-2935 [HIGH] CVE-2008-2935: libxslt - Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoR... Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoRc4EncryptFunction) and (2) decryption (aka exsltCryptoRc4DecryptFunction) functions in crypto.c in libexslt in libxslt 1.1.8 through 1.1.24 allow context-dependent attackers to execute arbitrary code via an XML file containing a long string as "an argument in the XSL input." Scope: local b

debian

← Previous2 / 2