CVE-2008-1767

Impact:
Important
Public Date:
2008-04-10
Bugzilla:
446809: CVE-2008-1767 libxslt: fixed-sized steps array overflow via "template match" condition in XSL file

The MITRE CVE dictionary describes this issue as:

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.

Find out more about CVE-2008-1767 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (libxslt) RHSA-2008:0287 2008-05-21
Red Hat Enterprise Linux 2.1 (libxslt) RHSA-2008:0287 2008-05-21
Red Hat Enterprise Linux 3 (libxslt) RHSA-2008:0287 2008-05-21
Red Hat Enterprise Linux 4 (libxslt) RHSA-2008:0287 2008-05-21

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.