Lucene search
UbuntuUSN-1784-1HistoryApr 02, 2013 - 12:00 a.m.
libxslt vulnerability
2013-04-0200:00:00
ubuntu.com
31
9.4 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.143 Low
EPSS
Percentile
95.6%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 10.04
- Ubuntu 8.04
Packages
- libxslt - XSLT processing library
Details
Nicholas Gregoire discovered that libxslt incorrectly handled certain empty
values. If a user or automated system were tricked into processing a
specially crafted XSLT document, a remote attacker could cause libxslt to
crash, causing a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | libxslt1.1 | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libxslt1-dbg | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libxslt1-dev | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 8.04 | noarch | python-libxslt1 | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 8.04 | noarch | python-libxslt1-dbg | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 8.04 | noarch | xsltproc | < 1.1.22-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libxslt1.1 | < 1.1.26-14ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libxslt1-dbg | < 1.1.26-14ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libxslt1-dev | < 1.1.26-14ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-libxslt1 | < 1.1.26-14ubuntu0.1 | UNKNOWN |
References
Related
securityvulns
securityvulns
[USN-1784-1] libxslt vulnerability
2013-04-02 00:00:00
libxslt DoS
2014-01-19 00:00:00
cve
cve
CVE-2012-6139
2013-04-12 22:55:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0727-1)
2021-06-09 00:00:00
Debian Security Advisory DSA 2654-1 (libxslt - denial of service)
2013-04-03 00:00:00
Ubuntu Update for libxslt USN-1784-1
2013-04-05 00:00:00
debiancve
debiancve
CVE-2012-6139
2013-04-12 22:55:00
debian
debian
[SECURITY] [DSA 2654-1] libxslt security update
2013-04-03 22:15:31
[SECURITY] [DSA 2654-1] libxslt security update
2013-04-03 22:15:31
nessus
nessus
Debian DSA-2654-1 : libxslt - denial of service
2013-04-04 00:00:00
openSUSE Security Update : libxslt (openSUSE-SU-2013:0585-1)
2014-06-13 00:00:00
Mandriva Linux Security Advisory : libxslt (MDVSA-2013:141)
2013-04-20 00:00:00
prion
prion
Null pointer dereference
2013-04-12 22:55:00
ubuntucve
ubuntucve
CVE-2012-6139
2013-03-26 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: libxslt-1.1.28-1.fc18
2013-04-18 02:46:11
gentoo
gentoo
libxslt: Denial of service
2014-01-10 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
9.4 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.143 Low
EPSS
Percentile
95.6%
Related for USN-1784-1