Sicherheit: Preisgabe von Informationen in libxslt
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in libxslt
ID: FEDORA-2019-e74d639587
Distribution: Fedora
Plattformen: Fedora 29
Datum: So, 23. Juni 2019, 15:36
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11068
Applikationen: The XSLT C library for GNOME


Fedora Update Notification
2019-06-23 10:22:51.053988

Name : libxslt
Product : Fedora 29
Version : 1.1.33
Release : 1.fc29
URL : http://xmlsoft.org/XSLT
Summary : Library providing the Gnome XSLT engine
Description :
This C library allows to transform XML files into other XML files
(or HTML, text, ...) using the standard XSLT stylesheet transformation
mechanism. To use it you need to have a version of libxml2 >= 2.6.27
installed. The xsltproc command is a command line interface to the XSLT engine

Update Information:

Update to 1.1.33 and fix CVE-2019-11068

* Fri Jun 7 2019 David King <amigadave@amigadave.com> - 1.1.33-1
- Update to 1.1.33
- Fix CVE-2019-11068 (#1709698)
* Mon May 6 2019 Artem S. Tashkinov <artem@tashkinov.com> - 1.1.32-4
- Apply an extra patch to fix PR1467435 and make it possible to coinstall
libxslt-devel.x64 and libxslt-devel.i686

[ 1 ] Bug #1709698 - CVE-2019-11068 libxslt: xsltCheckRead and xsltCheckWrite
routines security bypass by crafted URL [fedora-all]

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-e74d639587' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Pro-Linux @Facebook
Neue Nachrichten