Search for packages
Package details: pkg:deb/debian/libxslt@1.1.32-2.2~deb10u1
purl pkg:deb/debian/libxslt@1.1.32-2.2~deb10u1
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-2c4c-yyw7-aaas
Aliases:
CVE-2021-30560
GHSA-59gp-qqm7-cw4j
Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
1.1.34-4+deb11u1
Affected by 2 other vulnerabilities.
VCID-2xm3-e3ge-dya6
Aliases:
CVE-2024-55549
libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList)
1.1.35-1
Affected by 0 other vulnerabilities.
VCID-76fj-htxj-aaah
Aliases:
CVE-2019-18197
GHSA-242x-7cm6-4w8j
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed.
1.1.34-4+deb11u1
Affected by 2 other vulnerabilities.
VCID-amxx-y398-73dw
Aliases:
CVE-2025-24855
libxslt: Use-After-Free in libxslt numbers.c
1.1.35-1
Affected by 0 other vulnerabilities.
VCID-crfj-ka8q-aaad
Aliases:
CVE-2019-5815
GHSA-vmfx-gcfq-wvm2
Access of Resource Using Incompatible Type (Type Confusion) Type confusion in `xsltNumberFormatGetMultipleLevel` in libxslt, which is included in nokogiri, could allow attackers to potentially exploit heap corruption via crafted XML data.
1.1.34-4+deb11u1
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-1px9-q7g4-aaan libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded. CVE-2019-11068
GHSA-qxcg-xjjg-66mj
VCID-2em3-ugp2-aaag In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This could allow an attacker to discern whether a byte on the stack contains the characters A, a, I, i, or 0, or any other character. CVE-2019-13117
GHSA-4hm9-844j-jmxp
VCID-57tk-3v58-aaaj In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data. CVE-2019-13118
GHSA-cf46-6xxh-pc75
VCID-76fj-htxj-aaah In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed. CVE-2019-18197
GHSA-242x-7cm6-4w8j

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-22T17:05:34.401946+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 36.1.3
2025-06-21T18:53:20.248858+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:40:18.104198+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:39:37.458680+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T17:14:34.357635+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:34:31.471862+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:05:40.802893+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:17:17.872553+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:13:32.379651+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T04:04:34.146503+00:00 Debian Oval Importer Affected by VCID-76fj-htxj-aaah None 36.1.3
2025-06-21T00:39:24.613492+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad None 36.1.3
2025-06-20T23:52:13.698733+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag None 36.1.3
2025-06-20T23:06:52.992723+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj None 36.1.3
2025-06-20T22:58:36.678951+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan None 36.1.3
2025-06-20T22:56:53.848905+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah None 36.1.3
2025-06-20T21:39:54.402583+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas None 36.1.3
2025-06-08T12:59:35.330928+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:26:57.183945+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:23:07.659359+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:10:26.755187+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:13:18.900368+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:56:02.378483+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:29:01.020771+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:59:06.532168+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:10:37.317392+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:39:41.552714+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T21:40:03.071240+00:00 Debian Oval Importer Affected by VCID-76fj-htxj-aaah None 36.1.0
2025-06-07T18:01:59.381107+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad None 36.1.0
2025-06-07T17:15:05.787906+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag None 36.1.0
2025-06-07T16:30:02.913365+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj None 36.1.0
2025-06-07T16:21:50.635124+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan None 36.1.0
2025-06-07T16:20:09.874342+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah None 36.1.0
2025-06-07T15:02:43.121159+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas None 36.1.0
2025-04-13T02:57:52.518319+00:00 Debian Oval Importer Affected by VCID-amxx-y398-73dw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-13T02:54:10.038662+00:00 Debian Oval Importer Affected by VCID-2xm3-e3ge-dya6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:08:42.906679+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:17:53.619774+00:00 Debian Oval Importer Affected by VCID-76fj-htxj-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:46:56.100461+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:13:10.374111+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:07:10.878770+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:53:57.281551+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T15:54:07.271095+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:28:15.675798+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:00:26.345410+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:31:29.664805+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:43:11.848765+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:10:42.272809+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T20:09:36.961733+00:00 Debian Oval Importer Affected by VCID-76fj-htxj-aaah None 36.0.0
2025-04-07T16:38:59.564151+00:00 Debian Oval Importer Affected by VCID-crfj-ka8q-aaad None 36.0.0
2025-04-07T15:48:55.748196+00:00 Debian Oval Importer Fixing VCID-2em3-ugp2-aaag None 36.0.0
2025-04-07T15:02:00.272926+00:00 Debian Oval Importer Fixing VCID-57tk-3v58-aaaj None 36.0.0
2025-04-07T14:53:35.633000+00:00 Debian Oval Importer Fixing VCID-1px9-q7g4-aaan None 36.0.0
2025-04-07T14:51:50.960844+00:00 Debian Oval Importer Fixing VCID-76fj-htxj-aaah None 36.0.0
2025-04-07T13:34:33.218319+00:00 Debian Oval Importer Affected by VCID-2c4c-yyw7-aaas None 36.0.0
2025-04-07T02:16:54.423656+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 36.0.0
2025-04-06T09:55:52.305492+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 36.0.0
2025-02-19T23:20:29.625809+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 35.1.0
2025-02-19T09:58:43.447998+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 35.1.0
2024-11-22T07:27:11.062588+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 35.0.0
2024-11-20T05:50:25.799126+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.3.2
2024-10-09T06:30:54.321576+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.0.2
2024-09-18T17:33:20.011220+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.0.1
2024-04-24T23:18:05.143052+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 34.0.0rc4
2024-04-24T16:11:04.494860+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.0.0rc4
2024-01-11T00:14:41.439815+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 34.0.0rc2
2024-01-10T18:24:36.818580+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.0.0rc2
2024-01-04T13:03:56.083587+00:00 Debian Importer Affected by VCID-2c4c-yyw7-aaas None 34.0.0rc1
2024-01-04T07:55:10.816211+00:00 Debian Importer Affected by VCID-crfj-ka8q-aaad None 34.0.0rc1