[ubuntu/plucky-proposed] libxslt 1.1.39-0exp1ubuntu3 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Mar 18 14:40:19 UTC 2025 

libxslt (1.1.39-0exp1ubuntu3) plucky; urgency=medium

  * SECURITY UPDATE: use-after-free via exclusion of result prefixes
    - debian/patches/CVE-2024-55549.patch: store string in stylesheet's
      dict to avoid use after free in libxslt/xslt.c.
    - CVE-2024-55549

Date: Tue, 18 Mar 2025 10:22:08 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libxslt/1.1.39-0exp1ubuntu3
-------------- next part --------------
Format: 1.8
Date: Tue, 18 Mar 2025 10:22:08 -0400
Source: libxslt
Built-For-Profiles: noudeb
Architecture: source
Version: 1.1.39-0exp1ubuntu3
Distribution: plucky
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 libxslt (1.1.39-0exp1ubuntu3) plucky; urgency=medium
 .
   * SECURITY UPDATE: use-after-free via exclusion of result prefixes
     - debian/patches/CVE-2024-55549.patch: store string in stylesheet's
       dict to avoid use after free in libxslt/xslt.c.
     - CVE-2024-55549
Checksums-Sha1:
 2a2ff488a924fe7df88ed459d2ba43ee17527fb4 2275 libxslt_1.1.39-0exp1ubuntu3.dsc
 336842f215094b0b362222977b7e32a5f7472c30 22616 libxslt_1.1.39-0exp1ubuntu3.debian.tar.xz
 a6a9e025af65d12109fbec6de285412cb9d73080 6422 libxslt_1.1.39-0exp1ubuntu3_source.buildinfo
Checksums-Sha256:
 7dda03603577017ade53edb7e8d7b912fb8b7d17c08549eb835da13bf51db783 2275 libxslt_1.1.39-0exp1ubuntu3.dsc
 5ea9bdc61e6290c317d56dddb3cad6dd28690e1426cf6d0715e81e28632e3f08 22616 libxslt_1.1.39-0exp1ubuntu3.debian.tar.xz
 4de49069e5963d87feed173c4c7a470b8c9824d2331825ea0e97be063c71b5fa 6422 libxslt_1.1.39-0exp1ubuntu3_source.buildinfo
Files:
 95540ba84e5ed2b0972d4dfaab7a7bc9 2275 text optional libxslt_1.1.39-0exp1ubuntu3.dsc
 f4de43345f447dd92b7ba6c2aec4c740 22616 text optional libxslt_1.1.39-0exp1ubuntu3.debian.tar.xz
 78990fa5aebf952abe8e1d067c3ed31f 6422 text optional libxslt_1.1.39-0exp1ubuntu3_source.buildinfo
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>

More information about the plucky-changes mailing list