CVE-2013-4520

NONECVSS 0.0

0.0

xslt.c in libxslt before 1.1.25 allows context-dependent attackers to cause a denial of service (crash) via a stylesheet that embeds a DTD, which causes a structure to be accessed as a different type. NOTE: this issue is due to an incomplete fix for CVE-2012-2825.

🔗 References (16)

secalert@redhathttp://seclists.org/oss-sec/2013/q4/238
secalert@redhathttp://seclists.org/oss-sec/2013/q4/239
secalert@redhathttp://secunia.com/advisories/56072
secalert@redhathttp://www.osvdb.org/99671
secalert@redhathttps://bugzilla.novell.com/show_bug.cgi?id=849019
secalert@redhathttps://gitorious.org/libxslt/libxslt/commit/7089a62b8f133b42a2981cf1f920a8b3fe9a8caa
secalert@redhathttps://www.suse.com/support/update/announcement/2013/suse-su-20131654-1.html
secalert@redhathttps://www.suse.com/support/update/announcement/2013/suse-su-20131656-1.html
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/oss-sec/2013/q4/238
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/oss-sec/2013/q4/239
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/56072
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/99671
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.novell.com/show_bug.cgi?id=849019
af854a3a-2127-422b-91ae-364da2661108https://gitorious.org/libxslt/libxslt/commit/7089a62b8f133b42a2981cf1f920a8b3fe9a8caa
af854a3a-2127-422b-91ae-364da2661108https://www.suse.com/support/update/announcement/2013/suse-su-20131654-1.html

Is Your Infrastructure Affected by CVE-2013-4520?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-4520

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-4520?