[ubuntu/focal-updates] libxslt 1.1.34-4ubuntu0.20.04.3 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Mar 20 13:28:49 UTC 2025
libxslt (1.1.34-4ubuntu0.20.04.3) focal-security; urgency=medium
* SECURITY UPDATE: use-after-free via nested XPath evaluations
- debian/patches/CVE-2025-24855.patch: properly handle XPath context
nodes and transformation context nodes in libxslt/numbers.c,
libxslt/templates.c, libxslt/xsltutils.c.
- CVE-2025-24855
Date: 2025-03-19 17:51:13.064370+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libxslt/1.1.34-4ubuntu0.20.04.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list