All errata/sisyphus_riscv64/ALT-PU-2022-4272-1
ALT-PU-2022-4272-1

Package update libxslt in branch sisyphus_riscv64

Version1.1.35-alt2
Task#0
Published2022-03-15
Max severityHIGH
Severity:

Closed issues (2)

BDU:2021-03941
HIGH8.8

Уязвимость реализации технологии XSLT (eXtensible Stylesheet Language Transformations) модуля отображения Blink браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании

Published: 2021-08-06Modified: 2025-09-05
CVSS 3.xHIGH 8.8
CVSS:3.x/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.0CRITICAL 10.0
CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C
References
CVE-2021-30560
HIGH8.8

Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Published: 2021-08-03Modified: 2025-05-05
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 3.xHIGH 8.8
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References