Bug 1393780 (CVE-2016-1841) - CVE-2016-1841 libxslt: Use after free in xsltDocumentFunctionLoadDocument
Summary: CVE-2016-1841 libxslt: Use after free in xsltDocumentFunctionLoadDocument
Status: CLOSED WONTFIX
Alias: CVE-2016-1841
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=moderate,public=20151118,repor...
Keywords: Security
Depends On: 1393783 1393784 1393782
Blocks: 1393786
TreeView+ depends on / blocked
 
Reported: 2016-11-10 10:37 UTC by Adam Mariš
Modified: 2016-12-13 03:22 UTC (History)
33 users (show)

(edit)
Clone Of:
(edit)
Last Closed: 2016-12-13 03:22:59 UTC


Attachments (Terms of Use)

Description Adam Mariš 2016-11-10 10:37:19 UTC
A use after free vulnerability was found in xsltDocumentFunctionLoadDocument that can be triggered via crafted XML document.

Upstream bug:

https://bugzilla.gnome.org/show_bug.cgi?id=758291

Upstream patch:

https://git.gnome.org/browse/libxslt/commit/?id=fc1ff481fd01e9a65a921c542fed68d8c965e8a3

Comment 1 Adam Mariš 2016-11-10 10:43:20 UTC
Created libxslt tracking bugs for this issue:

Affects: fedora-all [bug 1393782]

Comment 2 Adam Mariš 2016-11-10 10:43:39 UTC
Created mingw-libxslt tracking bugs for this issue:

Affects: fedora-all [bug 1393783]
Affects: epel-7 [bug 1393784]


Note You need to log in before you can comment on or make changes to this bug.