Libxslt Security Update for Debian 8 LTS

Debian 9897 Published 2019-04-16 08:03 by Philipp Esselbach

News

Updated libxslt packages has been released for Debian GNU/Linux 8 LTS

Package : libxslt
Version : 1.1.28-2+deb8u4
CVE ID : CVE-2019-11068
Debian Bug : #926895

It was discovered that there was a authentication bypass
vulnerability in libxslt, a widely-used library for transforming
files from XML to other arbitrary format.

The xsltCheckRead and xsltCheckWrite routines permitted access upon
receiving an-1 error code and (as xsltCheckRead returned -1 for a
specially-crafted URL that is not actually invalid) the attacker was
subsequently authenticated.

For Debian 8 "Jessie", this issue has been fixed in libxslt version
1.1.28-2+deb8u4.

We recommend that you upgrade your libxslt packages.

Webkit2gtk3 Update for openSUSE Leap 15.0

DXVK 1.0.3 released

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...

Windows

Linux

macOS

Community