VulnerableCode Package Details - pkg:alpm/archlinux/libxslt@1.1.29%2B23%2Bgeb1030d-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/libxslt@1.1.29%2B23%2Bgeb1030d-1

purl	pkg:alpm/archlinux/libxslt@1.1.29%2B23%2Bgeb1030d-1

Next non-vulnerable version	1.1.29+41+gdf5330d1-1
Latest non-vulnerable version	1.1.29+41+gdf5330d1-1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-3f2w-tgya-x3cc Aliases: CVE-2017-5029 GHSA-pf6m-fxpq-fg8v	Upstream libxslt vulnerabilities The `xsltAddTextString` function in `transform.c` in libxslt, as used by nokogiri, lacks a check for integer overflow during a size calculation, which allows a remote attacker to perform an out-of-bounds memory write via a crafted HTML page.	1.1.29+41+gdf5330d1-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:24:51.070847+00:00	Arch Linux Importer	Affected by	VCID-3f2w-tgya-x3cc	https://security.archlinux.org/AVG-195	38.0.0