Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data.
References
Configurations
History
27 Oct 2022, 19:47
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2022/09/msg00010.html - Mailing List, Third Party Advisory |
09 Sep 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
References |
|
Information
Published : 2019-12-11 01:15
Updated : 2024-02-04 20:39
NVD link : CVE-2019-5815
Mitre link : CVE-2019-5815
CVE.ORG link : CVE-2019-5815
JSON object : View
Products Affected
debian
- debian_linux
xmlsoft
- libxslt