Debian-LTS has issued an advisory on November 5:
Assigning to the registered maintainer
Fixed on cauldron
fixed on mga5 too.
Updated libxslt packages fix security vulnerability:
A heap overread bug was found in libxslt, which can cause arbitrary code
execution or denial of service (CVE-2016-4738).
Updated packages in core/updates_testing:
MGA5-32 on Acer D620 Xfce
No installation issues
Using at CLI
# urpmq --whatrequires libxslt1
shows a.o. dia
Used strace -o ~/Documenten/libxslt.txt dia, created two squares and a connecting line in dia.
The resulting trace shows 4 calls to libxslt
An update for this issue has been pushed to the Mageia Updates repository.