CVE-2025-24855

High CVSS: 7.8

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.

Vendor

Xmlsoft

Product

Libxslt

CWE

CWE-416

Yayın Tarihi

2025-03-14 02:15:15

Güncelleme

2025-11-03 22:18:40

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-416 Libxslt HIGH Xmlsoft 2025

Referanslar

https://gitlab.gnome.org/GNOME/libxslt/-/issues/128 https://lists.debian.org/debian-lts-announce/2025/03/msg00015.html

Benzer Kayıtlar

Medium

CVE-2025-9714

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a local attacker to caus…

High

CVE-2025-7424

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which…

High

CVE-2025-6021

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a…

Low

CVE-2025-32415

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer un…

Medium

CVE-2025-32414

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindi…

High

CVE-2024-55549

xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes.