The Debian Hack Shop

It was discovered that libxslt, an XSLT processing runtime library,
could be coerced into executing arbitrary code via a buffer overflow
when an XSL style sheet file with a long XSLT “transformation match”
condition triggered a large number of steps.

Read the full story: DSA-1589 libxslt – buffer overflow: http://www.debian.org/security/2008/dsa-1589

Tags: advisory, Debian, DSA, Security

This entry was posted on Wednesday, May 28th, 2008 at 3:51 pm and is filed under Debian Security. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.