A heap overread vulnerability was found in xsltFormatNumberConversion function in libxslt. An empty decimal-separator could cause a heap overread. This can be exploited to leak a couple of bytes after the buffer that holds the pattern string.
Created libxslt tracking bugs for this issue:
Affects: fedora-all [bug 1388779]
Created mingw-libxslt tracking bugs for this issue:
Affects: fedora-all [bug 1388780]
Affects: epel-7 [bug 1388781]
This issue was initially filed as chromium bug at: