Mandriva Update For Libxslt MDVSA-2008:151 (libxslt) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A buffer overflow vulnerability in libxslt could be exploited via an XSL style sheet file with a long XLST transformation match condition, which could possibly lead to the execution of arbitrary code (CVE-2008-1767). The updated packages have been patched to correct this issue.

Affected

libxslt on Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64, Mandriva Linux 2008.0, Mandriva Linux 2008.0/X86_64, Mandriva Linux 2008.1, Mandriva Linux 2008.1/X86_64

Severity

Classification

CVE CVE-2008-1767
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:185 (firefox)
Mandrake Security Advisory MDVSA-2009:036 (python)
Mandrake Security Advisory MDVSA-2009:151 (dhcp)
Mandrake Security Advisory MDVSA-2009:153 (dhcp)
Mandrake Security Advisory MDVSA-2009:165 (ghostscript)

Mandriva Update for libxslt MDVSA-2008:151 (libxslt)

Take action and discover your vulnerabilities