RHEL 7 : libxslt (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxslt: Invalid memory access leading to DoS at exsltDynMapFunction CVE-2016-4610 - libxslt: Heap overre...

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2020-1215)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.2.0 : libxslt (EulerOS-SA-2020-1215)

According to the versions of the libxslt packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles the i format token for...

USN-3271-1 libxslt vulnerabilities

Holger Fuhrmannek discovered an integer overflow in the xsltAddTextString function in Libxslt. An attacker could use this to craft a malicious document that, when opened, could cause a denial of service application crash or possible execute arbitrary code. CVE-2017-5029 Nicolas Gregoire discovere...

libxslt: denial of service

A type confusion vulnerability was discovered in the xsltStylePreCompute function of libxslt. A remote attacker could possibly exploit this flaw to cause an application using libxslt to crash by tricking the application into processing a specially crafted XSLT document...

Type confusion

The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue...

CVE-2015-7995

The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue...

CVE-2015-7995

CVE-2015-7995 affects libxslt and is described as a type confusion in the xsltStylePreCompute() function that could lead to a denial of service when processing crafted XML. Public documents corroborate libxslt involvement across vendors (e.g., Debian security advisories cite this CVE with fixes i...

PT-2015-7695

Name of the Vulnerable Software and Affected Versions libxslt version 1.1.28 Description The issue is related to a "type confusion" problem in the xsltStylePreCompute function, which does not properly check if the parent node is an element. This allows attackers to cause a denial of service by...