MiracleLinux 3 : libxslt-1.1.17-4.3.0.1.AXS3 (AXSA:2012-927:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-927:01 advisory. This C library allows to transform XML files into other XML files or HTML, text, ... using the standard XSLT stylesheet transformation mechanism. To...

Multiple Apple Products libxslt Component Memory Corruption Vulnerability

Apple watchOS and others are products of Apple Inc.Apple watchOS is a smartwatch operating system.Apple iCloud for Windows is a cloud service based on the Windows platform. The product supports storage of music, photos, apps, contacts, etc. Apple macOS Catalina is a specialized operating system...

libxslt: fixed-sized steps array overflow via "template match" condition in XSL file

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps...