Libxslt Use-After-Free Vulnerability in xsltGetInheritedNsList Function

Vulnerability

A use-after-free vulnerability has been identified in the libxslt library, specifically in versions prior to 1.1.43. The issue arises in the xsltGetInheritedNsList function, where improper handling of result prefixes creates the potential for memory corruption.

Impact

Exploitation of this vulnerability leads to a use-after-free condition, which can commonly result in memory corruption and potentially allow for arbitrary code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Libxslt Use-After-Free Vulnerability in xsltGetInheritedNsList Function

Vulnerability

Impact

Affected Products

GNOME libxslt

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating