CNNVD-202510-2073 Information

CNNVD ID

CNNVD-202510-2073

Related CVE

CVE-2025-11731

• CNNVD Published: 2025-10-14

Description (Chinese)

Libxslt是Libxslt开源的一个为 GNOME 项目开发的 XSLT C 库。 Libxslt存在安全漏洞，该漏洞源于exsltFuncResultComp函数处理EXSLT func:result元素时类型处理不当，可能导致类型混淆，引发意外内存读取和崩溃。

Description (English)

Libxslt is an XSLT C library developed for the GNOME project at the Libxslt Open Source. Libxslt has a security loophole, which stems from the inappropriate handling of the exsltFuncResult Comp function when dealing with EXSLT func:result elements, which can lead to type confusion and trigger accidental memory reading and crash.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Libxslt

Published

2025-10-14

Last Modified

2026-02-24

References

https://bugzilla.redhat.com/show_bug.cgi?id=2403688 https://access.redhat.com/security/cve/CVE-2025-11731 https://vigilance.fr/vulnerability/libxslt-denial-of-service-via-exsltFuncResultComp-48567