CVE-2011-1202 (retired)

Priority
Description
The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and
earlier, as used in Google Chrome before 10.0.648.127 and other products,
allows remote attackers to obtain potentially sensitive information about
heap memory addresses via an XML document containing a call to the XSLT
generate-id XPath function.
Assigned-to
mdeslaur
Package
Upstream:released (3.6.17)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (5.0~b2+build1+nobinonly-0ubuntu2)
Package
Upstream:released (1.1.26-7)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (1.1.26-13)
Patches:
Upstream:http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Package
Upstream:released (1.9.2.17)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
More Information

Updated: 2019-03-26 11:55:53 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)