Wind River Support Network


LIN6-11440 : Security Advisory - libxslt - CVE-2016-1684

Created: Jun 14, 2016    Updated: Dec 3, 2018
Resolved Date: Aug 7, 2016
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace


numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles the i format token for xsl:number data, which allows remote attackers to cause a denial of service (integer overflow or resource consumption) or possibly have unspecified other impact via a crafted document.<a href=>CWE-190: Integer Overflow or Wraparound</a>

Other Downloads

Live chat