libxslt-1.1.34-9.el9_5.1
エラータID: AXSA:2025-9809:01
libxslt is a library for transforming XML files into other textual formats (including HTML, plain text, and other XML representations of the underlying data) using the standard XSLT stylesheet transformation mechanism.
Security Fix(es):
* libxslt: Use-After-Free in libxslt numbers.c (CVE-2025-24855)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2025-24855
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
Update packages.
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.
N/A
SRPMS
- libxslt-1.1.34-9.el9_5.1.src.rpm
MD5: 07963d84f870c9626941b12a2409ebd2
SHA-256: 110083d4466dbdad002935d88f49ebd6d914fdf5be03de84c56625f5612e8575
Size: 3.39 MB
Asianux Server 9 for x86_64
- libxslt-1.1.34-9.el9_5.1.i686.rpm
MD5: 4544af1e10652589529610d9ff945a51
SHA-256: 5b9760a5e6007d1baca895961e8dcf0d4dadc4b4da42b57422fa22383a7e5737
Size: 255.05 kB - libxslt-1.1.34-9.el9_5.1.x86_64.rpm
MD5: 1a22a045b34365c44e2ecb71790afe87
SHA-256: 78c7545399119f7f1f4cd1632adb219a27c44fec581ce444ccabbfebd46c407c
Size: 239.22 kB - libxslt-devel-1.1.34-9.el9_5.1.i686.rpm
MD5: 60d899487bd9ee99ef9ce0ca4025b4f5
SHA-256: 2a1a26ebb39c07a3d8ba31f7d6000fecfc05215b489e92514ac4f39e9e090e03
Size: 320.66 kB - libxslt-devel-1.1.34-9.el9_5.1.x86_64.rpm
MD5: 233ec46858e2f7e1b818974a8f5194d0
SHA-256: 53a3d0246b50e89b75b9dc24bee96c882e1c8226fe0e3c81e3b3520f2255cd34
Size: 320.62 kB
日本語