Описание
ELSA-2020-4005: libxslt security update (MODERATE)
[1.1.28-6.0.1]
- Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball
[1.1.28-6]
- Fix CVE-2019-18197 (#1775516)
- Fix CVE-2019-11068 (#1715731)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libxslt
1.1.28-6.0.1.el7
libxslt-devel
1.1.28-6.0.1.el7
libxslt-python
1.1.28-6.0.1.el7
Oracle Linux x86_64
libxslt
1.1.28-6.0.1.el7
libxslt-devel
1.1.28-6.0.1.el7
libxslt-python
1.1.28-6.0.1.el7
Связанные CVE
Связанные уязвимости
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed.
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed.
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed.
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable i ...