VulnerableCode Package Details - pkg:deb/debian/libxslt@1.1.32-2.2?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libxslt@1.1.32-2.2?distro=trixie

purl	pkg:deb/debian/libxslt@1.1.32-2.2?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-sxp3-vtcq-pugw	Nokogiri affected by libxslt Use of Uninitialized Resource/Use After Free vulnerability In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed. Nokogiri prior to version 1.10.5 contains a vulnerable version of libxslt. Nokogiri version 1.10.5 upgrades the dependency to libxslt 1.1.34, which contains a patch for this issue.	CVE-2019-18197 GHSA-242x-7cm6-4w8j

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:02:35.622521+00:00	Debian Importer	Fixing	VCID-sxp3-vtcq-pugw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:13:38.912104+00:00	Debian Importer	Fixing	VCID-sxp3-vtcq-pugw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:30:11.081146+00:00	Debian Importer	Fixing	VCID-sxp3-vtcq-pugw	https://security-tracker.debian.org/tracker/data/json	38.1.0