A CVE was assigned for a DoS issue in libxslt: http://openwall.com/lists/oss-security/2015/10/28/4 The RedHat bug has the patch and a reproducer PoC: https://bugzilla.redhat.com/show_bug.cgi?id=1257962 Patched packages uploaded for Mageia 5 and Cauldron. Advisory: ======================== Updated libxslt packages fix security vulnerability: A type confusion vulnerability in libxslt in xsltStylePreCompute() in preproc.c can lead to a denial of service (CVE-2015-7995). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7995 http://openwall.com/lists/oss-security/2015/10/28/4 ======================== Updated packages in core/updates_testing: ======================== xsltproc-1.1.28-8.1.mga5 libxslt1-1.1.28-8.1.mga5 python-libxslt-1.1.28-8.1.mga5 libxslt-devel-1.1.28-8.1.mga5 from libxslt-1.1.28-8.1.mga5.src.rpm Reproducible: Steps to Reproduce:
Procedure: https://wiki.mageia.org/en/QA_procedure:Libxslt
Whiteboard: (none) => has_procedure
Tested the xsltproc procedure from Comment 1 on Mageia 5 i586, verified OK. Also confirmed the segmentation fault in the PoC before the update. After the update it errored out as follows: $ xsltproc poc compilation error: file poc line 3 element attribute XSLT-attribute: The attribute 'name' is missing. compilation error: file poc line 3 element attribute xsltParseStylesheetProcess : document is not a stylesheet
Whiteboard: has_procedure => has_procedure MGA5-32-OK
Keywords: (none) => validated_updateWhiteboard: has_procedure MGA5-32-OK => has_procedure MGA5-32-OK advisoryCC: (none) => davidwhodgins, sysadmin-bugs
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2015-0432.html
Status: NEW => RESOLVEDResolution: (none) => FIXED
URL: (none) => http://lwn.net/Vulnerabilities/663516/