50 matches found
MiracleLinux 7 : libxslt-1.1.28-6.0.1.el7.AXS7 (AXSA:2020-761:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-761:01 advisory. libxslt: xsltCheckRead and xsltCheckWrite routines security bypass by crafted URL CVE-2019-11068 libxslt: use after free in xsltCopyText in transform...
TencentOS Server 3: libxslt (TSSA-2022:0062)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0062 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Alibaba Cloud Linux 3 : 0062: libxslt (ALINUX3-SA-2022:0062)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0062 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-11068: libxslt through 1.1.33...
Photon OS 3.0: Libxslt PHSA-2019-3.0-0037
An update of the libxslt package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0037. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
BELL-CVE-2019-18197 CVE-2019-18197 does not affect BellSoft software
Bulletin has no description...
K10812540: OpenJDK vulnerability CVE-2019-18197
Security Advisory Description In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or...
F5 Networks BIG-IP : OpenJDK vulnerability (K10812540)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.8 / 16.1.4 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K10812540 advisory. In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances...
SUSE: Security Advisory (SUSE-SU-2020:0920-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:0920-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL CORE 5.04 / MAIN 5.04 : libxslt Multiple Vulnerabilities (NS-SA-2021-0027)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libxslt packages installed that are affected by multiple vulnerabilities: - libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receivin...
NewStart CGSL MAIN 6.02 : libxslt Multiple Vulnerabilities (NS-SA-2021-0088)
The remote NewStart CGSL host, running version MAIN 6.02, has libxslt packages installed that are affected by multiple vulnerabilities: - libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error...
Amazon Linux AMI : libxslt (ALAS-2021-1463)
The version of libxslt installed on the remote host is prior to 1.1.28-6.15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1463 advisory. libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite perm...
Oracle Linux 8 : libxslt (ELSA-2020-4464)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4464 advisory. - Fix CVE-2019-18197 1775517 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...
libxslt security update
1.1.32-5.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-5 - Fix CVE-2019-18197 1775517 - Fix CVE-2019-11068 1715732...
Moderate: Red Hat Security Advisory: libxslt security update
An update for libxslt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
RHEL 8 : libxslt (RHSA-2020:4464)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4464 advisory. libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the...
Moderate: libxslt security update
libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the underlying data using the standard XSLT stylesheet transformation mechanism. Security Fixes: libxslt: xsltCheckRead and xsltCheckWrite routines security bypa...
Medium: libxslt
Issue Overview: libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded. CVE-2019-110...
Scientific Linux Security Update : libxslt on SL7.x x86_64 (20201001)
Security Fixes : - libxslt: xsltCheckRead and xsltCheckWrite routines security bypass by crafted URL CVE-2019-11068 - libxslt: use after free in xsltCopyText in transform.c could lead to information disclosure CVE-2019-18197 C Tenable Network Security, Inc. The descriptive text is C Scientific...
libxslt security update
1.1.28-6.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.28-6 - Fix CVE-2019-18197 1775516 - Fix CVE-2019-11068 1715731...