CVE-2011-1202

2011-03-1000:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS

0.004

Percentile

72.8%

JSON

The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and
earlier, as used in Google Chrome before 10.0.648.127 and other products,
allows remote attackers to obtain potentially sensitive information about
heap memory addresses via an XML document containing a call to the XSLT
generate-id XPath function.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchfirefox< 3.6.17+build3+nobinonly-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchfirefox< 3.6.17+build3+nobinonly-0ubuntu0.10.10.1UNKNOWN
ubuntu11.04noarchfirefox< 4.0.1+build1+nobinonly-0ubuntu0.11.04.1UNKNOWN
ubuntu8.04noarchlibxslt< 1.1.22-1ubuntu1.3UNKNOWN
ubuntu10.04noarchlibxslt< 1.1.26-1ubuntu1.1UNKNOWN
ubuntu11.04noarchlibxslt< 1.1.26-6ubuntu0.1UNKNOWN
ubuntu10.04noarchthunderbird< 3.1.10+build1+nobinonly-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchthunderbird< 3.1.10+build1+nobinonly-0ubuntu0.10.10.1UNKNOWN
ubuntu11.04noarchthunderbird< 3.1.10+build1+nobinonly-0ubuntu0.11.04.1UNKNOWN
ubuntu8.04noarchxulrunner-1.9.2< 1.9.2.17+build3+nobinonly-0ubuntu0.8.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	firefox	< 3.6.17+build3+nobinonly-0ubuntu0.10.04.1	UNKNOWN
ubuntu	10.10	noarch	firefox	< 3.6.17+build3+nobinonly-0ubuntu0.10.10.1	UNKNOWN
ubuntu	11.04	noarch	firefox	< 4.0.1+build1+nobinonly-0ubuntu0.11.04.1	UNKNOWN
ubuntu	8.04	noarch	libxslt	< 1.1.22-1ubuntu1.3	UNKNOWN
ubuntu	10.04	noarch	libxslt	< 1.1.26-1ubuntu1.1	UNKNOWN
ubuntu	11.04	noarch	libxslt	< 1.1.26-6ubuntu0.1	UNKNOWN
ubuntu	10.04	noarch	thunderbird	< 3.1.10+build1+nobinonly-0ubuntu0.10.04.1	UNKNOWN
ubuntu	10.10	noarch	thunderbird	< 3.1.10+build1+nobinonly-0ubuntu0.10.10.1	UNKNOWN
ubuntu	11.04	noarch	thunderbird	< 3.1.10+build1+nobinonly-0ubuntu0.11.04.1	UNKNOWN
ubuntu	8.04	noarch	xulrunner-1.9.2	< 1.9.2.17+build3+nobinonly-0ubuntu0.8.04.1	UNKNOWN