|
|
| |
|
| |
libxslt: denial of service
| Package(s): | libxslt |
CVE #(s): | CVE-2012-2870
CVE-2012-2871
|
| Created: | September 14, 2012 |
Updated: | October 4, 2012 |
| Description: |
From the Red Hat advisory:
libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly manage memory, which might allow remote attackers to cause a denial of service (application crash) via a crafted XSLT expression that is not properly identified during XPath navigation, related to (1) the xsltCompileLocationPathPattern function in libxslt/pattern.c and (2) the xsltGenerateIdFunction function in libxslt/functions.c. (CVE-2012-2870)
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h. (CVE-2012-2871) |
| Alerts: |
|
( Log in to post comments)
|
|
|