thr3ads.net - Secure testing team - [Secure-testing-team] Bug#617413: Leak of address of heap object via xslt generate-id() function [Mar 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Giuseppe Iuculano

2011-Mar-08 19:00 UTC

[Secure-testing-team] Bug#617413: Leak of address of heap object via xslt generate-id() function

Package: libxslt
Severity: important
Tags: security patch

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Hi,

new version of google chrome fixed a minor security issue in libxslt:

 Issue 73716:	Leak of address of heap object via xslt generate-id() function

Upstream patch:
http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f

This issue doesn''t warrant a DSA, please fix it in squeeze through a
point release.

Cheers,
Giuseppe.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk12fOgACgkQNxpp46476aoZlgCeLNC6RvPwSxqlfN2Ya2r/S7mG
u68AoJR5axPqhBCCAqouYt0GYicrA6y8
=QvVL
-----END PGP SIGNATURE-----

Secure testing team - Mar 2011 - Bug#617413: Leak of address of heap object via xslt generate-id() function

[Secure-testing-team] Bug#617413: Leak of address of heap object via xslt generate-id() function