Multiple Vulnerabilities in libxslt <= 1.1.27 allows remote denial of service
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6139
https://bugzilla.gnome.org/show\_bug.cgi?id=685328
A read at NULL occurs in SKIP_BLANKS when an invalid “use” parameter is given to “xsl:key”
Patch: https://git.gnome.org/browse/libxslt/patch/?id=dc11b6b379a882418093ecc8adf11f6166682e8d
https://bugzilla.gnome.org/show\_bug.cgi?id=685330
Patch: https://git.gnome.org/browse/libxslt/patch/?id=6c99c519d97e5fcbec7a9537d190efb442e4e833
A read near NULL occurs in xsltDocumentFunction() when an uninitialized variable is used as a parameter to the document() function
(from redmine: issue id 1756, created on 2013-04-05, closed on 2013-04-12)
- Relations:
- parent #1755 (closed)
- Changesets:
- Revision 41e89665 by Natanael Copa on 2013-04-11T13:29:15Z:
main/libxslt: security upgrade to 1.1.28 (CVE-2012-6139)
fixes #1756