Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2017-5029
Description:The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
Test IDs: 1.3.6.1.4.1.25623.1.0.703810   1.3.6.1.4.1.25623.1.0.890866  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-5029
BugTraq ID: 96767
http://www.securityfocus.com/bid/96767
Debian Security Information: DSA-3810 (Google Search)
http://www.debian.org/security/2017/dsa-3810
RedHat Security Advisories: RHSA-2017:0499
http://rhn.redhat.com/errata/RHSA-2017-0499.html
http://www.securitytracker.com/id/1038157




© 1998-2024 E-Soft Inc. All rights reserved.