-
libxslt (1.1.32-2ubuntu0.2) disco-security; urgency=medium
* SECURITY UPDATE: Uninitialized read
- debian/patches/CVE-2019-13117.patch: Fix uninitialized
read of xsl:number token in libxslt/numbers.c.
- CVE-2019-13117
* SECURITY UPDATE: Uninitialized read
- debian/patches/CVE-2019-13118.patch: Fix uninitialized
read with UTF-8 grouping chars in libxslt/numbers.c,
tests/docs/bug-222.xml, tests/general/bug-222.out,
tests/general/bug-222.xsl.
- CVE-2019-13118
* SECURITY UPDATE: Buffer over-read
- debian/patches/CVE-2019-18197.patch: Fix dangling
pointer in xsltCopyText in libxslt/transform.c.
- CVE-2019-18197
-- <email address hidden> (Leonidas S. Barbosa) Tue, 22 Oct 2019 09:40:11 -0300
-
libxslt (1.1.32-2ubuntu0.1) cosmic-security; urgency=medium
* SECURITY UPDATE: Bypass of protection mechanism
- debian/patches/CVE-2019-11068.patch: Fix security
framework bypass checking for returns equal or less
-1 in libxslt/documents.c, libxslt/imports.c,
libxslt/transform.c,libxslt/xslt.c.
- CVE-2019-11068
-- <email address hidden> (Leonidas S. Barbosa) Fri, 12 Apr 2019 13:44:12 -0300
-
libxslt (1.1.32-2) unstable; urgency=medium
* Team upload.
* Add missing Build-Depends on pkg-config.
-- Mattia Rizzolo <email address hidden> Sat, 26 May 2018 23:12:37 +0200
