Описание
numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 51.0.2704.79-0ubuntu2~cm1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [51.0.2704.79-0ubuntu0.14.04.1.1121]] |
| precise | ignored | |
| trusty | released | 51.0.2704.79-0ubuntu0.14.04.1.1121 |
| trusty/esm | DNE | trusty was released [51.0.2704.79-0ubuntu0.14.04.1.1121] |
| upstream | released | 51.0.2704.63-1 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | released | 51.0.2704.79-0ubuntu0.15.10.1.1232 |
| xenial | released | 51.0.2704.79-0ubuntu0.16.04.1.1242 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.1.29-1 |
| esm-infra-legacy/trusty | released | 1.1.28-2ubuntu0.1 |
| esm-infra/xenial | released | 1.1.28-2.1ubuntu0.1 |
| precise | released | 1.1.26-8ubuntu1.4 |
| trusty | released | 1.1.28-2ubuntu0.1 |
| trusty/esm | released | 1.1.28-2ubuntu0.1 |
| upstream | released | 1.1.29-1 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.15.7-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.15.7-0ubuntu0.14.04.1]] |
| esm-infra/xenial | released | 1.15.7-0ubuntu0.16.04.1 |
| precise | DNE | |
| trusty | released | 1.15.7-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.15.7-0ubuntu0.14.04.1] |
| upstream | released | 1.15.7 |
| vivid/stable-phone-overlay | released | 1.15.7-0ubuntu0.15.04.1~overlay1 |
| vivid/ubuntu-core | DNE | |
| wily | released | 1.15.7-0ubuntu0.15.10.1 |
Показывать по
EPSS
5.1 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51 ...
numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
Уязвимость библиотеки XLST-преобразований LibXLST, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие
EPSS
5.1 Medium
CVSS2
7.5 High
CVSS3