Advisory ROSA-SA-2026-3300

CVE-ID: CVE-2025-11731 BDU-ID: 2026-02739 CVE-Crit: LOW CVE-DESCRIPTION: The vulnerability in the exsltFuncResultComp function of the functions.c component in the Libxslt XML analysis library is related to data type conversion errors. Exploitation of this vulnerability may allow an attacker to...

EulerOS Virtualization 2.12.1 : libxslt (EulerOS-SA-2026-1443)

According to the versions of the libxslt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers an...

EUVD-2019-18140

Malware in sbrugna...

EUVD-2012-3444

Malware in sbrugna...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Libxslt vulnerabilities (USN-7787-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7787-1 advisory. Ivan Fratric discovered that Libxslt did not correctly handle certain memory operations. An attacker could possibly use this issu...

[SECURITY] [DSA 5979-1] libxslt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5979-1 [email protected] https://www.debian.org/security/ Aron Xu August 19, 2025 https://www.debian.org/security/faq -...

Oracle Linux 10 : libxslt (ELSA-2025-7496)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7496 advisory. - Fix CVE-2024-55549 RHEL-83503 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

TencentOS Server 3: libxslt (TSSA-2025:0309)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0309 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

EulerOS 2.0 SP11 : libxslt (EulerOS-SA-2025-1672)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes.CVE-2024-55549 numbers.c in...

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2025-1671)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : libxslt (EulerOS-SA-2025-1671)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes.CVE-2024-55549 numbers.c in...

EulerOS 2.0 SP12 : libxslt (EulerOS-SA-2025-1599)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never...

EulerOS 2.0 SP13 : libxslt (EulerOS-SA-2025-1621)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes.CVE-2024-55549 numbers.c in...

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2025-1600)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2025-1621)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP12 : libxslt (EulerOS-SA-2025-1600)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.16.40 bug fix and security update

Red Hat OpenShift Container Platform release 4.16.40 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...

Alibaba Cloud Linux 3 : 0054: libxslt (ALINUX3-SA-2025:0054)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0054 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-55549: xsltGetInheritedNsList in...

SUSE SLES12 Security Update : libxslt (SUSE-SU-2025:1494-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1494-1 advisory. - CVE-2025-24855: Fixed use-after-free of XPath context node bsc1239625 - CVE-2024-55549: Fixed use-after-free related to excluded namespaces...

Oracle Linux 7 : libxslt (ELSA-2025-3612)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-3612 advisory. - Fix CVE-2024-55549 issue due to memory leak Orabug: 37795485 Tenable has extracted the preceding description block directly from the Oracle Linux...