Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-3101-1:65A90
HistorySep 09, 2022 - 1:08 p.m.

[SECURITY] [DLA 3101-1] libxslt security update

2022-09-0913:08:41
lists.debian.org
25

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.0%

JSON

Debian LTS Advisory DLA-3101-1 [email protected]
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
September 09, 2022 https://wiki.debian.org/LTS

Package : libxslt
Version : 1.1.32-2.2~deb10u2
CVE ID : CVE-2019-5815 CVE-2021-30560

Two vulnerabilities were discovered in libxslt, an XSLT processing
runtime library, that could result in denial of service or potentially
the execution of arbitrary code if malicious files are processed.

For Debian 10 buster, these problems have been fixed in version
1.1.32-2.2~deb10u2.

We recommend that you upgrade your libxslt packages.

For the detailed security status of libxslt please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libxslt

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian11amd64xsltproc< 1.1.34-4+deb11u1xsltproc_1.1.34-4+deb11u1_amd64.deb
Debian11armellibxslt1.1-dbgsym< 1.1.34-4+deb11u1libxslt1.1-dbgsym_1.1.34-4+deb11u1_armel.deb
Debian11amd64libxslt1.1-dbgsym< 1.1.34-4+deb11u1libxslt1.1-dbgsym_1.1.34-4+deb11u1_amd64.deb
Debian11s390xlibxslt1.1-dbgsym< 1.1.34-4+deb11u1libxslt1.1-dbgsym_1.1.34-4+deb11u1_s390x.deb
Debian11amd64xsltproc-dbgsym< 1.1.34-4+deb11u1xsltproc-dbgsym_1.1.34-4+deb11u1_amd64.deb
Debian10armhfpython-libxslt1< 1.1.32-2.2~deb10u2python-libxslt1_1.1.32-2.2~deb10u2_armhf.deb
Debian10arm64xsltproc< 1.1.32-2.2~deb10u2xsltproc_1.1.32-2.2~deb10u2_arm64.deb
Debian11ppc64elxsltproc< 1.1.34-4+deb11u1xsltproc_1.1.34-4+deb11u1_ppc64el.deb
Debian11s390xxsltproc< 1.1.34-4+deb11u1xsltproc_1.1.34-4+deb11u1_s390x.deb
Debian11amd64libxslt1.1< 1.1.34-4+deb11u1libxslt1.1_1.1.34-4+deb11u1_amd64.deb
Rows per page:
1-10 of 671

Related

nessus 52
openvas 45
ubuntu 2
osv 10
cloudfoundry 1
veracode 1
cnvd 1
mageia 2
alpinelinux 1
cbl_mariner 2
ubuntucve 2
gentoo 3
prion 2
debiancve 2
debian 3
github 3
cve 2
mscve 1
photon 11
slackware 1
redhatcve 1
rubygems 1
suse 9
archlinux 4
freebsd 1
fedora 5
kaspersky 2
chrome 2
rosalinux 1
redhat 1
ibm 1
tenable 1
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Libxslt vulnerabilities (USN-5575-1)
2022-08-22 00:00:00
Ubuntu 16.04 ESM : Libxslt vulnerabilities (USN-5575-2)
2022-08-22 00:00:00
Debian DLA-3101-1 : libxslt - LTS security update
2022-09-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5575-2)
2022-08-26 00:00:00
Debian: Security Advisory (DLA-3101-1)
2022-09-10 00:00:00
Ubuntu: Security Advisory (USN-5575-1)
2022-08-26 00:00:00
ubuntu
ubuntu
Libxslt vulnerabilities
2022-08-22 00:00:00
Libxslt vulnerabilities
2022-08-22 00:00:00
osv
osv
libxslt - security update
2022-09-09 00:00:00
libxslt vulnerabilities
2022-08-22 12:37:09
libxslt vulnerabilities
2022-08-22 17:59:23
cloudfoundry
cloudfoundry
USN-5575-1: Libxslt vulnerabilities | Cloud Foundry
2022-09-29 00:00:00
veracode
veracode
Arbitrary Code Execution
2021-07-16 17:48:19
cnvd
cnvd
Google Chrome Resource Management Error Vulnerability (CNVD-2021-68462)
2021-07-16 00:00:00
mageia
mageia
Updated libxslt packages fix security vulnerability
2022-09-21 21:15:27
Updated chromium-browser-stable packages fix security vulnerabilities
2019-09-21 14:07:28
alpinelinux
alpinelinux
CVE-2021-30560
2021-08-03 19:15:00
cbl_mariner
cbl_mariner
CVE-2021-30560 affecting package libxslt 1.1.34-6
2022-06-03 17:54:00
CVE-2021-30560 affecting package libxslt 1.1.34-2
2022-06-15 17:03:07
ubuntucve
ubuntucve
CVE-2021-30560
2021-08-03 00:00:00
CVE-2019-5815
2019-12-11 00:00:00
gentoo
gentoo
libxslt: Multiple Vulnerabilities
2023-10-31 00:00:00
Chromium, Google Chrome: Multiple vulnerabilities
2021-07-22 00:00:00
Chromium, Google Chrome: Multiple vulnerabilities
2019-08-15 00:00:00
prion
prion
Design/Logic Flaw
2021-08-03 19:15:00
Type confusion
2019-12-11 01:15:00
debiancve
debiancve
CVE-2021-30560
2021-08-03 19:15:00
CVE-2019-5815
2019-12-11 01:15:00
debian
debian
[SECURITY] [DSA 5216-1] libxslt security update
2022-08-24 15:04:29
[SECURITY] [DSA 4500-1] chromium security update
2019-08-13 05:17:57
[SECURITY] [DSA 4500-1] chromium security update
2019-08-13 05:17:57
github
github
Nokogiri implementation of libxslt vulnerable to heap corruption
2022-05-24 17:03:17
Nokogiri has vulnerable dependencies on libxml2 and libxslt
2022-05-24 19:09:47
Vulnerable dependencies in Nokogiri
2022-02-25 20:32:09
cve
cve
CVE-2021-30560
2021-08-03 19:15:00
CVE-2019-5815
2019-12-11 01:15:00
mscve
mscve
Chromium: CVE-2021-30560 Use after free in Blink XSLT
2021-07-19 07:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0398
2022-05-30 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0398
2022-05-30 00:00:00
Important Photon OS Security Update - PHSA-2022-0485
2022-06-17 00:00:00
slackware
slackware
[slackware-security] libxslt
2022-03-01 05:14:54
redhatcve
redhatcve
CVE-2019-5815
2019-04-25 08:26:30
rubygems
rubygems
Update packaged libxml2 (2.9.12 → 2.9.13) and libxslt (1.1.34 → 1.1.35)
2022-02-20 21:00:00
suse
suse
Security update for opera (important)
2021-08-05 00:00:00
Security update for opera (important)
2021-08-05 00:00:00
Security update for chromium (important)
2021-07-22 00:00:00
archlinux
archlinux
[ASA-202107-46] opera: arbitrary code execution
2021-07-21 00:00:00
[ASA-202107-31] vivaldi: arbitrary code execution
2021-07-16 00:00:00
[ASA-202107-30] chromium: arbitrary code execution
2021-07-16 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2021-07-15 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: chromium-91.0.4472.164-1.fc34
2021-07-19 01:13:48
[SECURITY] Fedora 33 Update: chromium-91.0.4472.164-1.fc33
2021-07-26 01:02:49
[SECURITY] Fedora 30 Update: chromium-75.0.3770.100-2.fc30
2019-07-01 01:09:45
kaspersky
kaspersky
KLA12235 Multiple vulnerabilities in Microsoft Browser
2021-07-19 00:00:00
KLA11474 Multiple vulnerabilities in Google Chrome
2019-04-23 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-07-15 00:00:00
Stable Channel Update for Desktop
2019-04-23 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1906
2021-07-02 17:26:03
redhat
redhat
(RHSA-2019:1021) Important: chromium-browser security update
2019-05-07 15:56:33
ibm
ibm
Security Bulletin: Mutiple Vulnerabilties Affecting Watson Machine Learning Accelerator on Cloud Pak for Data version
2023-11-13 15:22:22
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.0%

JSON
Related for DEBIAN:DLA-3101-1:65A90
nessus52openvas45ubuntu2osv10cloudfoundry1veracode1cnvd1mageia2alpinelinux1cbl_mariner2ubuntucve2gentoo3prion2debiancve2debian3github3cve2mscve1photon11slackware1redhatcve1rubygems1suse9archlinux4freebsd1fedora5kaspersky2chrome2rosalinux1redhat1ibm1tenable1