PublicDateAtUSN: 2017-03-10 Candidate: CVE-2017-5029 PublicDate: 2017-04-24 23:59:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5029 https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html https://ubuntu.com/security/notices/USN-3236-1 https://ubuntu.com/security/notices/USN-3271-1 Description: The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Ubuntu-Description: Notes: Bugs: https://bugzilla.gnome.org/show_bug.cgi?id=777124 https://bugs.chromium.org/p/chromium/issues/detail?id=676623 Priority: medium Discovered-by: Holger Fuhrmannek Assigned-to: CVSS: nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [8.8 HIGH] nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [8.8 HIGH] Patches_chromium-browser: upstream_chromium-browser: released (57.0.2987.98) precise_chromium-browser: ignored precise/esm_chromium-browser: DNE (precise was ignored) trusty_chromium-browser: released (58.0.3029.81-0ubuntu0.14.04.1172) trusty/esm_chromium-browser: DNE (trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]) vivid/ubuntu-core_chromium-browser: DNE vivid/stable-phone-overlay_chromium-browser: DNE xenial_chromium-browser: released (57.0.2987.98-0ubuntu0.16.04.1276) yakkety_chromium-browser: released (57.0.2987.98-0ubuntu0.16.10.1344) zesty_chromium-browser: released (57.0.2987.98-0ubuntu1.1348) devel_chromium-browser: released (57.0.2987.98-0ubuntu1.1348) Patches_oxide-qt: upstream_oxide-qt: released (1.21.5) precise_oxide-qt: DNE precise/esm_oxide-qt: DNE trusty_oxide-qt: released (1.21.5-0ubuntu0.14.04.1) trusty/esm_oxide-qt: DNE (trusty was released [1.21.5-0ubuntu0.14.04.1]) vivid/ubuntu-core_oxide-qt: DNE vivid/stable-phone-overlay_oxide-qt: ignored (reached end-of-life) xenial_oxide-qt: released (1.21.5-0ubuntu0.16.04.1) esm-infra/xenial_oxide-qt: released (1.21.5-0ubuntu0.16.04.1) yakkety_oxide-qt: released (1.21.5-0ubuntu0.16.10.1) zesty_oxide-qt: released (1.21.5-0ubuntu1) devel_oxide-qt: released (1.21.5-0ubuntu1) Patches_libxslt: upstream: https://git.gnome.org/browse/libxslt/commit/?id=08ab2774b870de1c7b5a48693df75e8154addae5 upstream_libxslt: needed precise_libxslt: released (1.1.26-8ubuntu1.4) precise/esm_libxslt: released (1.1.26-8ubuntu1.4) trusty_libxslt: released (1.1.28-2ubuntu0.1) trusty/esm_libxslt: released (1.1.28-2ubuntu0.1) vivid/stable-phone-overlay_libxslt: DNE vivid/ubuntu-core_libxslt: DNE xenial_libxslt: released (1.1.28-2.1ubuntu0.1) esm-infra/xenial_libxslt: released (1.1.28-2.1ubuntu0.1) yakkety_libxslt: released (1.1.29-1ubuntu0.1) zesty_libxslt: released (1.1.29-2ubuntu0.1) devel_libxslt: not-affected (1.1.29-2.1)