Bugzilla – Bug 811686
VUL-0: CVE-2012-6139: libxslt: two denial of service (crashes)
Last modified: 2013-11-11 15:54:40 UTC
is public, via oss-sec CVE-2012-6139 From: Agostino Sarubbo <ago@gentoo.org> Date: Mon, 25 Mar 2013 17:04:05 +0100 Subject: [oss-security] CVE request: libxslt "xsltDocumentFunction()" and "xsltAddKey()" Denial of Service Vulnerabilities From the secunia advisory: https://secunia.com/advisories/52805/ 1) An error within the "xsltDocumentFunction()" function (libxslt/functions.c) when parsing XSL templates can be exploited to cause a crash. Commit code: http://git.gnome.org/browse/libxslt/commit/?id=6c99c519d97e5fcbec7a9537d190efb442e4e833 2) A NULL-pointer dereference error within the "xsltAddKey()" function (libxslt/keys.c) when parsing XSL keys can be exploited to cause a crash. Commit code: http://git.gnome.org/browse/libxslt/commit/?id=dc11b6b379a882418093ecc8adf11f6166682e8d Both issue are fixed in the version 1.1.28
https://bugzilla.gnome.org/show_bug.cgi?id=685328 https://bugzilla.gnome.org/show_bug.cgi?id=685330
both seem to be NULL ptr dereferences.
Both 12.3 and Factory contain fixed version (1.1.28) already. Packages for 12.1 and 12.2 submitted.
This is an autogenerated message for OBS integration: This bug (811686) was mentioned in https://build.opensuse.org/request/show/161157 Maintenance /
bugbot adjusting priority
The SWAMPID for this issue is 51917. This issue was rated as moderate. Please submit fixed packages until 2013-04-10. When done, please reassign the bug to security-team@suse.de. Patchinfo will be handled by security team.
This is an autogenerated message for OBS integration: This bug (811686) was mentioned in https://build.opensuse.org/request/show/161614 Evergreen:11.2 / libxslt
This is an autogenerated message for OBS integration: This bug (811686) was mentioned in https://build.opensuse.org/request/show/161690 Maintenance /
openSUSE-SU-2013:0585-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 811686 CVE References: CVE-2012-6139 Sources used: openSUSE 12.3 (src): libxslt-1.1.28-3.4.1, libxslt-python-1.1.28-3.4.1 openSUSE 12.2 (src): libxslt-1.1.26-22.6.1, libxslt-python-1.1.26-22.6.1 openSUSE 12.1 (src): libxslt-1.1.26-15.11.1, libxslt-python-1.1.26-15.11.1
This is an autogenerated message for OBS integration: This bug (811686) was mentioned in https://build.opensuse.org/request/show/162220 Evergreen:11.2 / libxslt
openSUSE-SU-2013:0593-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 811686 CVE References: CVE-2012-6139 Sources used: openSUSE 11.4 (src): libxslt-1.1.26-3.17.1
released
Update released for: libxslt, libxslt-32bit, libxslt-debuginfo, libxslt-debuginfo-32bit, libxslt-debugsource, libxslt-devel, libxslt-devel-32bit, libxslt-python, libxslt-python-debuginfo, libxslt-python-debugsource Products: SLE-SERVER 11-SP1-TERADATA (x86_64)
Update released for: libxslt, libxslt-devel, libxslt-python Products: SUSE-CORE 9-SP3-TERADATA (x86_64)
Update released for: libxslt, libxslt-32bit, libxslt-debuginfo, libxslt-debuginfo-32bit, libxslt-debuginfo-x86, libxslt-debugsource, libxslt-devel, libxslt-devel-32bit, libxslt-python, libxslt-python-debuginfo, libxslt-python-debugsource, libxslt-x86 Products: SLE-DEBUGINFO 11-SP2 (i386, ia64, ppc64, s390x, x86_64) SLE-DESKTOP 11-SP2 (i386, x86_64) SLE-SDK 11-SP2 (i386, ia64, ppc64, s390x, x86_64) SLE-SERVER 11-SP2 (i386, ia64, ppc64, s390x, x86_64) SLES4VMWARE 11-SP2 (i386, x86_64)
Update released for: libxslt, libxslt-32bit, libxslt-debuginfo, libxslt-devel, libxslt-devel-32bit, libxslt-python, libxslt-python-debuginfo Products: SLE-SERVER 10-SP3-TERADATA (x86_64)
Update released for: libxslt, libxslt-32bit, libxslt-64bit, libxslt-debuginfo, libxslt-devel, libxslt-devel-32bit, libxslt-devel-64bit, libxslt-python, libxslt-python-debuginfo, libxslt-x86 Products: SLE-DESKTOP 10-SP4 (i386, x86_64) SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64) SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
The SWAMPID for this issue is 54776. This issue was rated as moderate. Please submit fixed packages until 2013-11-01. When done, please reassign the bug to security-team@suse.de. Patchinfo will be handled by security team.
Update released for: libxslt, libxslt-32bit, libxslt-debuginfo, libxslt-devel, libxslt-devel-32bit, libxslt-python, libxslt-python-debuginfo Products: SLE-SERVER 10-SP3-LTSS (i386, s390x, x86_64)