Описание
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | libxslt | Fix deferred | ||
| Red Hat Enterprise Linux 6 | libxslt | Fix deferred | ||
| Red Hat Enterprise Linux 7 | libxslt | Fix deferred | ||
| Red Hat Enterprise Linux 8 | libxslt | Fix deferred | ||
| Red Hat Enterprise Linux 9 | libxslt | Fix deferred | ||
| Red Hat OpenShift Container Platform 4 | rhcos | Fix deferred |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-825
https://bugzilla.redhat.com/show_bug.cgi?id=2397838libxslt: use-after-free with key data stored cross-RVT
5.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
6 месяцев назад
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
CVSS3: 5.5
nvd
6 месяцев назад
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
CVSS3: 5.5
debian
6 месяцев назад
A use-after-free vulnerability was found in libxslt while parsing xsl ...
5.5 Medium
CVSS3