Debian Security Advisory
DLA-514-1 libxslt -- LTS security update
- Date Reported:
- 12 Jun 2016
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2015-7995, CVE-2016-1683, CVE-2016-1684.
- More information:
Several vulnerabilities were found in libxslt.
A missing type check could cause an application crash via a especially crafted file.
An out of bounds heap access bug was found in libxslt.
There was an integer overflow bug in libxslt that could lead to an application crash.
For Debian 7
Wheezy, these problems have been fixed in version 1.1.26-14.1+deb7u1.
We recommend that you upgrade your libxslt packages.
Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS