JLSEC-2026-580

In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be...

[SECURITY] Fedora 43 Update: evince-48.1-2.fc43

Evince is simple multi-page document viewer. It can display and print Portable Document Format PDF, PostScript PS and Encapsulated PostScript EPS files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents...

copy-text (>=2.0.1 <=2.1.2), cypherquery (>=1.1.8 <=1.1.13) +1 more potentially affected by CVE-2026-4800 via lodash.template (>=4.0.0 <=4.0.2)

lodash.template NPM version =4.0.0, =2.0.1, =1.1.8, =2.0.7, =2.0.13 Source cves: CVE-2026-4800 Source advisory: OSV:GHSA-R5FR-RJXR-66JC...

copy-text (>=2.0.1 <=2.1.2), cypherquery (>=1.1.8 <=1.1.13) +1 more potentially affected by CVE-2021-23337 +1 more via lodash.template (>=4.0.0 <=4.0.2)

lodash.template NPM version =4.0.0, =2.0.1, =1.1.8, =2.0.7, =2.0.13 Source cves: CVE-2021-23337, CVE-2026-4800 Source advisory: SNYK:JS-LODASHTEMPLATE-15869628...