[Git][security-tracker-team/security-tracker][master] Track CVE-2015-9019 is fixed in libxslt/1.1.32-1
Aron Xu (@aron)
aron at debian.org
Wed Aug 13 14:59:29 BST 2025
Aron Xu pushed to branch master at Debian Security Tracker / security-tracker
Commits:
99f5688d by Aron Xu at 2025-08-13T21:58:43+08:00
Track CVE-2015-9019 is fixed in libxslt/1.1.32-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -613989,7 +613989,7 @@ CVE-2017-0887 (Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass i
CVE-2016-7443 (Exponent CMS 2.3.0 through 2.3.9 allows remote attackers to have unspe ...)
NOT-FOR-US: Exponent CMS
CVE-2015-9019 (In libxslt 1.1.29 and earlier, the EXSLT math.random function was not ...)
- - libxslt <unfixed> (unimportant; bug #859796)
+ - libxslt 1.1.32-1 (unimportant; bug #859796)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=758400
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=934119
NOTE: There's no indication that math.random() in intended to ensure cryptographic
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f5688d5584e5c7f619d291724d59bf94768cdb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f5688d5584e5c7f619d291724d59bf94768cdb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250813/a1c0c816/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list