RedHatRHSA-2008:0287(RHSA-2008:0287) Important: libxslt security update
EPSS
Percentile
88.1%
libxslt is a C library, based on libxml, for parsing of XML files into
other textual formats (eg HTML, plain text and other XML representations of
the underlying data) It uses the standard XSLT stylesheet transformation
mechanism and, being written in plain ANSI C, is designed to be simple to
incorporate into other applications
Anthony de Almeida Lopes reported the libxslt library did not properly
process long βtransformation matchβ conditions in the XSL stylesheet files.
An attacker could create a malicious XSL file that would cause a crash, or,
possibly, execute and arbitrary code with the privileges of the application
using libxslt library to perform XSL transformations. (CVE-2008-1767)
All users are advised to upgrade to these updated packages, which contain a
backported patch to resolve this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | s390 | libxslt | <Β 1.1.11-1.el4_6.1 | libxslt-1.1.11-1.el4_6.1.s390.rpm |
| RedHat | 5 | i386 | libxslt-python | <Β 1.1.17-2.el5_1.1 | libxslt-python-1.1.17-2.el5_1.1.i386.rpm |
| RedHat | 4 | s390x | libxslt-devel | <Β 1.1.11-1.el4_6.1 | libxslt-devel-1.1.11-1.el4_6.1.s390x.rpm |
| RedHat | 5 | s390x | libxslt-python | <Β 1.1.17-2.el5_1.1 | libxslt-python-1.1.17-2.el5_1.1.s390x.rpm |
| RedHat | 4 | ia64 | libxslt-python | <Β 1.1.11-1.el4_6.1 | libxslt-python-1.1.11-1.el4_6.1.ia64.rpm |
| RedHat | 4 | s390 | libxslt-python | <Β 1.1.11-1.el4_6.1 | libxslt-python-1.1.11-1.el4_6.1.s390.rpm |
| RedHat | 4 | x86_64 | libxslt | <Β 1.1.11-1.el4_6.1 | libxslt-1.1.11-1.el4_6.1.x86_64.rpm |
| RedHat | 4 | s390x | libxslt-python | <Β 1.1.11-1.el4_6.1 | libxslt-python-1.1.11-1.el4_6.1.s390x.rpm |
| RedHat | 5 | x86_64 | libxslt | <Β 1.1.17-2.el5_1.1 | libxslt-1.1.17-2.el5_1.1.x86_64.rpm |
| RedHat | 4 | ia64 | libxslt-devel | <Β 1.1.11-1.el4_6.1 | libxslt-devel-1.1.11-1.el4_6.1.ia64.rpm |
Related
