[CLSA-2026:1782722295] libxslt: Fix of CVE-2025-10911
Type:
security
Severity:
Moderate
Release date:
2026-06-29 08:38:30 UTC
Description:
- CVE-2025-10911: fix use-after-free with key data stored cross-RVT by using a dedicated node type for the cached result-value-tree list (backport of upstream 27c7c5bb) - CVE-2025-10911: add upstream regression test bug-225 (issue #144)
CVEs fixed:
Updated packages:
  • libxslt-1.1.34-13.el9_6.tuxcare.els3.i686.rpm
    sha:10972ba9a447b4a7c06204c2ddebc6a17c592c57befc6b090e15522081c4a709
  • libxslt-1.1.34-13.el9_6.tuxcare.els3.x86_64.rpm
    sha:79c55530f48c5dd6242d2db3fca98e5854ebe73d24fcd3b17711c6c54451902a
  • libxslt-devel-1.1.34-13.el9_6.tuxcare.els3.i686.rpm
    sha:8a35d7e5ba654543e3ca3f39cb9d469e039249dd9631679dc7f2867f22a68e75
  • libxslt-devel-1.1.34-13.el9_6.tuxcare.els3.x86_64.rpm
    sha:6e8137ec94cf27d972d5bdb7683a76dab1d7502092724a5d20207fcd044dc4a9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.