Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-1202HistoryMar 11, 2011 - 2:01 a.m.
CVE-2011-1202
2011-03-1102:01:20
Debian Security Bug Tracker
security-tracker.debian.org
17
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
72.8%
The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libxslt | < 1.1.26-7 | libxslt_1.1.26-7_all.deb |
| Debian | 11 | all | libxslt | < 1.1.26-7 | libxslt_1.1.26-7_all.deb |
| Debian | 999 | all | libxslt | < 1.1.26-7 | libxslt_1.1.26-7_all.deb |
| Debian | 13 | all | libxslt | < 1.1.26-7 | libxslt_1.1.26-7_all.deb |
Related
prion
prion
Design/Logic Flaw
2011-03-11 02:01:00
Design/Logic Flaw
2011-04-15 20:55:00
Design/Logic Flaw
2011-04-15 19:55:00
cve
cve
veracode
veracode
Information Leakage
2019-01-15 08:57:24
Denial Of Service (DoS)
2019-05-02 04:43:13
Denial Of Service (DoS)
2019-05-02 04:43:13
nvd
nvd
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2011-1202
2011-03-10 00:00:00
CVE-2011-1712
2011-04-15 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2011-18
2011-05-01 00:00:00
[USN-1595-1] libxslt vulnerabilities
2012-10-05 00:00:00
libxslt multiple security vulnerabilities
2012-10-05 00:00:00
mozilla
mozilla
XSLT generate-id() function heap address leak — Mozilla
2011-04-28 00:00:00
android
android
Android Browser Exploit WebKit
2011-02-22 00:00:00
nessus
nessus
RHEL 4 : libxslt (Unpatched Vulnerability)
2024-06-03 00:00:00
Mandriva Linux Security Advisory : libxslt (MDVSA-2012:164)
2012-10-12 00:00:00
Fedora 17 : libxslt-1.1.26-10.fc17 (2012-14083)
2012-09-27 00:00:00
openvas
openvas
Mandriva Update for libxslt MDVSA-2012:164 (libxslt)
2012-10-12 00:00:00
Mandriva Update for libxslt MDVSA-2012:164 (libxslt)
2012-10-12 00:00:00
RedHat Update for libxslt RHSA-2012:1265-01
2012-09-17 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: libxslt-1.1.26-9.fc16
2012-09-27 04:27:12
[SECURITY] Fedora 18 Update: libxslt-1.1.27-2.fc18
2012-12-09 06:31:24
[SECURITY] Fedora 17 Update: libxslt-1.1.26-10.fc17
2012-09-26 09:11:57
ubuntu
ubuntu
Firefox vulnerabilities
2011-04-30 00:00:00
libxslt vulnerabilities
2012-10-04 00:00:00
Thunderbird regression
2011-06-06 00:00:00
amazon
amazon
Important: libxslt
2012-09-22 21:33:00
oraclelinux
oraclelinux
libxslt security update
2012-09-13 00:00:00
firefox security update
2011-04-29 00:00:00
redhat
redhat
(RHSA-2012:1265) Important: libxslt security update
2012-09-13 00:00:00
(RHSA-2011:0471) Critical: firefox security update
2011-04-28 00:00:00
(RHSA-2012:1325) Important: rhev-hypervisor6 security and bug fix update
2012-10-02 00:00:00
centos
centos
libxslt security update
2012-09-13 18:02:29
firefox, xulrunner security update
2011-04-29 15:48:25
vmware
vmware
suse
suse
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
72.8%
Related for DEBIANCVE:CVE-2011-1202