[xml/sgml-pkgs] Bug#1016533: libxslt1.1: CVE-2021-30560 not fixed in stable
Michael Kesper
mkesper at web.de
Tue Aug 2 15:11:57 BST 2022
Package: libxslt1.1
Version: 1.1.34-4
Severity: important
X-Debbugs-Cc: mkesper at web.de
Dear Maintainer,
please apply the upstream patch for CVE-2021-30560 to libxslt in Debian stable (bullseye).
This is a non-disputed security issue and chromium was fixed but not libxslt.
https://security-tracker.debian.org/tracker/CVE-2021-30560
Best regards
Michael
-- System Information:
Debian Release: 11.4
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'proposed-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.0-16-amd64 (SMP w/6 CPU threads)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de:en_US
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages libxslt1.1 depends on:
ii libc6 2.31-13+deb11u3
ii libgcrypt20 1.8.7-6
ii libxml2 2.9.10+dfsg-6.7+deb11u2
libxslt1.1 recommends no packages.
libxslt1.1 suggests no packages.
-- no debconf information
More information about the debian-xml-sgml-pkgs
mailing list