CVE-2025-10911

Опубликовано: 25 сент. 2025

Источник: debian

EPSS Низкий

Описание

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libxslt	fixed	1.1.43-0.3		package
libxslt	postponed		trixie	package
libxslt	postponed		bookworm	package

Примечания

https://gitlab.gnome.org/GNOME/libxslt/-/issues/144
https://gitlab.gnome.org/GNOME/libxslt/-/merge_requests/77

EPSS

Процентиль: 1%

0.00014

Низкий

Связанные уязвимости

CVE-2025-10911

CVSS3: 5.5

ubuntu

около 2 месяцев назад

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

CVE-2025-10911

CVSS3: 5.5

nvd

около 2 месяцев назад

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.

CVE-2025-10911

msrc

около 2 месяцев назад

Libxslt: use-after-free with key data stored cross-rvt

SUSE-SU-2025:03595-1

suse-cvrf

около 1 месяца назад

Security update for libxslt

SUSE-SU-2025:03491-1

suse-cvrf

около 1 месяца назад

Security update for libxslt

EPSS

Процентиль: 1%

0.00014

Низкий