CVE-2025-10911

Опубликовано: 25 сент. 2025

Источник: debian

EPSS Низкий

Описание

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libxslt	fixed	1.1.43-0.3		package
libxslt	postponed		trixie	package
libxslt	postponed		bookworm	package

Примечания

https://gitlab.gnome.org/GNOME/libxslt/-/issues/144
https://gitlab.gnome.org/GNOME/libxslt/-/merge_requests/77

EPSS

Процентиль: 3%

0.00016

Низкий

Связанные уязвимости

CVE-2025-10911

CVSS3: 5.5

ubuntu

6 месяцев назад

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

CVE-2025-10911

CVSS3: 5.5

redhat

8 месяцев назад

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

CVE-2025-10911

CVSS3: 5.5

nvd

6 месяцев назад

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

CVE-2025-10911

msrc

4 месяца назад

Libxslt: use-after-free with key data stored cross-rvt

SUSE-SU-2026:0801-1

suse-cvrf

около 1 месяца назад

Security update for libxslt

EPSS

Процентиль: 3%

0.00016

Низкий