[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3101-1] libxslt security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3101-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
September 09, 2022                            https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : libxslt
Version        : 1.1.32-2.2~deb10u2
CVE ID         : CVE-2019-5815 CVE-2021-30560

Two vulnerabilities were discovered in libxslt, an XSLT processing
runtime library, that could result in denial of service or potentially
the execution of arbitrary code if malicious files are processed.

For Debian 10 buster, these problems have been fixed in version
1.1.32-2.2~deb10u2.

We recommend that you upgrade your libxslt packages.

For the detailed security status of libxslt please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libxslt

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=kMQG
-----END PGP SIGNATURE-----


Reply to: