Analyzed
1 day
ago.
based on code collected
1 day
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2025-24855 | BDSA-2025-2108 | High | Mar 14, 2025 | numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. more... |
1.1.42, 1.1.41, 1.1.40, v1.1.39, 1.1.36, 1.1.28, 1.1.27, 1.1.26, 1.1.25, 1.1.24
|
| CVE-2024-55549 | BDSA-2025-2107 | High | Mar 14, 2025 | xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes. |
1.1.42, 1.1.41, 1.1.40, v1.1.39, 1.1.36, 1.1.28, 1.1.27, 1.1.26, 1.1.25, 1.1.24
|
| BDSA-2025-6824 | High | Jul 11, 2025 | libxslt is vulnerable to type confusion due to the unsafe reuse of the `psvi` field between stylesheet and input nodes. This could allow an attacker to more... | ||
| BDSA-2025-6823 | High | Jul 11, 2025 | Libxslt is vulnerable to a memory corruption issue due to the presence of a heap-use-after-free flaw that can occur as a result of unsafe manipulation more... | ||
| BDSA-2025-13846 | Low | Oct 14, 2025 | Libxslt is vulnerable to denial-of-service (DoS) due to improper type handling in the `EXSLT` `<func:result>` element handler during style-sheet parsin more... | ||
| BDSA-2025-12612 | Medium | Sep 26, 2025 | Libxslt contains a use-after-free vulnerability when parsing XSL nodes due to improper handling of the result value tree (RVT). A local attacker could more... |
