A vulnerability exists in XSLT during number formatting where a negative buffer size may be allocated in some instances, leading to a buffer overflow and crash if it occurs. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/#CVE-2018-5177
Acknowledgments: Name: the Mozilla project Upstream: Guyio