CVE-2019-13117

Name
CVE-2019-13117
Description
In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This could allow an attacker to discern whether a byte on the stack contains the characters A, a, I, i, or 0, or any other character.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Issue Tracking https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14471
Patch https://gitlab.gnome.org/GNOME/libxslt/commit/c5eb6cf3aba0af048596106ed839b4ae17ecbcb1
Permissions Required https://oss-fuzz.com/testcase-detail/5631739747106816
MLIST https://lists.debian.org/debian-lts-announce/2019/07/msg00020.html
CONFIRM https://security.netapp.com/advisory/ntap-20190806-0004/
UBUNTU https://usn.ubuntu.com/4164-1/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IOYJKXPQCUNBMMQJWYXOR6QRUJZHEDRZ/
MLIST http://www.openwall.com/lists/oss-security/2019/11/17/2
MISC https://www.oracle.com/security-alerts/cpujan2020.html
CONFIRM https://security.netapp.com/advisory/ntap-20200122-0003/
SUSE http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html
MLIST https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
MLIST https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:xmlsoft:libxslt:1.1.33:*:*:*:*:*:*:* libxslt == None == 1.1.33

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libxslt 3.11-main 1.1.34-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libxslt 3.10-main 1.1.33-r3 Natanael Copa <ncopa@alpinelinux.org> fixed