A use after free vulnerability was found in xsltDocumentFunctionLoadDocument that can be triggered via crafted XML document. Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=758291 Upstream patch: https://git.gnome.org/browse/libxslt/commit/?id=fc1ff481fd01e9a65a921c542fed68d8c965e8a3
Created libxslt tracking bugs for this issue: Affects: fedora-all [bug 1393782]
Created mingw-libxslt tracking bugs for this issue: Affects: fedora-all [bug 1393783] Affects: epel-7 [bug 1393784]