Lucene search
AlmaLinuxALSA-2020:4464HistoryNov 03, 2020 - 12:07 p.m.
Moderate: libxslt security update
2020-11-0312:07:14
errata.almalinux.org
14
0.008 Low
EPSS
Percentile
81.7%
libxslt is a library for transforming XML files into other textual formats (including HTML, plain text, and other XML representations of the underlying data) using the standard XSLT stylesheet transformation mechanism.
Security Fix(es):
-
libxslt: xsltCheckRead and xsltCheckWrite routines security bypass by crafted URL (CVE-2019-11068)
-
libxslt: use after free in xsltCopyText in transform.c could lead to information disclosure (CVE-2019-18197)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | libxslt | < 1.1.32-5.el8 | libxslt-1.1.32-5.el8.i686.rpm |
| almalinux | 8 | x86_64 | libxslt | < 1.1.32-5.el8 | libxslt-1.1.32-5.el8.x86_64.rpm |
| almalinux | 8 | i686 | libxslt-devel | < 1.1.32-5.el8 | libxslt-devel-1.1.32-5.el8.i686.rpm |
| almalinux | 8 | x86_64 | libxslt-devel | < 1.1.32-5.el8 | libxslt-devel-1.1.32-5.el8.x86_64.rpm |
Related
nessus
nessus
Amazon Linux 2 : libxslt (ALAS-2020-1535)
2020-10-28 00:00:00
Amazon Linux AMI : libxslt (ALAS-2021-1463)
2021-01-14 00:00:00
NewStart CGSL MAIN 6.02 : libxslt Multiple Vulnerabilities (NS-SA-2021-0088)
2021-03-10 00:00:00
amazon
amazon
Medium: libxslt
2021-01-12 22:51:00
Medium: libxslt
2020-10-22 18:26:00
Medium: libxslt
2020-12-16 20:31:00
ibm
ibm
redhat
redhat
(RHSA-2020:4005) Moderate: libxslt security update
2020-09-29 07:50:58
(RHSA-2020:4464) Moderate: libxslt security update
2020-11-03 12:07:14
oraclelinux
oraclelinux
libxslt security update
2020-11-10 00:00:00
libxslt security update
2020-10-06 00:00:00
suse
suse
Security update for libxslt (moderate)
2019-05-22 00:00:00
Security update for libxslt (moderate)
2019-05-22 00:00:00
Security update for libxslt (moderate)
2019-05-22 00:00:00
alpinelinux
alpinelinux
CVE-2019-11068
2019-04-10 20:29:01
CVE-2019-18197
2019-10-18 21:15:10
debian
debian
[SECURITY] [DLA 1756-1] libxslt security update
2019-04-15 16:07:56
[SECURITY] [DLA 1973-1] libxslt security update
2019-10-27 21:17:53
veracode
veracode
Authorization Bypass
2019-04-23 03:14:13
Denial Of Service (DoS)
2019-10-23 05:35:33
prion
prion
Authentication flaw
2019-04-10 20:29:00
Buffer overflow
2019-10-18 21:15:00
nvd
nvd
CVE-2019-18197
2019-10-18 21:15:10
CVE-2019-11068
2019-04-10 20:29:01
openvas
openvas
Debian: Security Advisory (DLA-1973-1)
2019-10-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0920-1)
2021-04-19 00:00:00
Ubuntu: Security Advisory (USN-3947-1)
2019-04-16 00:00:00
freebsd
freebsd
libxslt -- security framework bypass
2019-04-10 00:00:00
github
github
Nokogiri vulnerable to libxslt protection mechanism bypass
2022-05-13 01:21:57
ubuntu
ubuntu
Libxslt vulnerability
2019-04-15 00:00:00
Libxslt vulnerability
2019-04-15 00:00:00
Libxslt vulnerabilities
2019-10-22 00:00:00
cloudfoundry
cloudfoundry
USN-3947-1: Libxslt vulnerability | Cloud Foundry
2019-04-25 00:00:00
USN-4164-1: Libxslt vulnerabilities | Cloud Foundry
2019-11-06 00:00:00
osv
osv
Nokogiri affected by libxslt Use of Uninitialized Resource/Use After Free vulnerability
2022-05-24 16:59:28
libxslt - security update
2019-10-27 00:00:00
Nokogiri vulnerable to libxslt protection mechanism bypass
2022-05-13 01:21:57
cvelist
cvelist
CVE-2019-11068
2019-04-10 19:38:18
CVE-2019-18197
2019-10-18 20:07:17
fedora
fedora
[SECURITY] Fedora 30 Update: libxslt-1.1.33-1.fc30
2019-06-14 00:56:14
[SECURITY] Fedora 29 Update: libxslt-1.1.33-1.fc29
2019-06-23 10:23:11
[SECURITY] Fedora 30 Update: mingw-libxslt-1.1.33-1.fc30
2019-06-18 18:15:35
redhatcve
redhatcve
CVE-2019-11068
2020-04-09 10:56:05
CVE-2019-18197
2019-11-11 10:37:46
mageia
mageia
Updated libxslt packages fix security vulnerability
2019-05-18 15:33:10
Updated libxslt packages fix security vulnerabilities
2019-11-02 19:54:34
Updated chromium-browser-stable packages fix security vulnerabilities
2020-03-06 19:13:58
f5
f5
K30444545 : libxslt vulnerability CVE-2019-11068
2022-08-19 00:00:00
K10812540 : OpenJDK vulnerability CVE-2019-18197
2022-10-06 00:00:00
debiancve
debiancve
CVE-2019-11068
2019-04-10 20:29:01
CVE-2019-18197
2019-10-18 21:15:10
ubuntucve
ubuntucve
CVE-2019-11068
2019-04-10 00:00:00
CVE-2019-18197
2019-10-18 00:00:00
symantec
symantec
libxslt CVE-2019-18197 Arbitrary Code Execution Vulnerability
2019-10-18 00:00:00
libxslt CVE-2019-11068 Security Bypass Vulnerability
2019-04-10 00:00:00
cve
cve
CVE-2019-11068
2019-04-10 20:29:01
CVE-2019-18197
2019-10-18 21:15:10
rubygems
rubygems
Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
2019-10-30 21:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0010
2019-04-19 00:00:00
Critical Photon OS Security Update - PHSA-2019-0037
2019-11-01 00:00:00
kaspersky
kaspersky
KLA11753 Multiple vulnerabilities in Oracle Java SE
2020-03-16 00:00:00
KLA11582 Multiple vulnerabilities in Oracle Java SE
2019-10-15 00:00:00
KLA11660 Multiple vulnerabilities in Google Chrome
2020-02-04 00:00:00
archlinux
archlinux
[ASA-202002-3] chromium: multiple issues
2020-02-06 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-02-04 00:00:00