Описание
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.1.39-0exp1ubuntu4 |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | not-affected | 1.1.34-4ubuntu0.20.04.3 |
| esm-infra/xenial | needs-triage | |
| focal | released | 1.1.34-4ubuntu0.20.04.3 |
| jammy | released | 1.1.34-4ubuntu0.22.04.3 |
| noble | released | 1.1.39-0exp1ubuntu0.24.04.2 |
| oracular | released | 1.1.39-0exp1ubuntu1.2 |
| plucky | released | 1.1.39-0exp1ubuntu4 |
Показывать по
EPSS
7.8 High
CVSS3
Связанные уязвимости
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
numbers.c in libxslt before 1.1.43 has a use-after-free because, in ne ...
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
EPSS
7.8 High
CVSS3