In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be disclosed.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-10-18T20:07:17

Updated: 2024-08-05T01:47:13.523Z

Reserved: 2019-10-18T00:00:00

Link: CVE-2019-18197

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-10-18T21:15:10.793

Modified: 2024-11-21T04:32:48.610

Link: CVE-2019-18197

cve-icon Redhat

Severity : Moderate

Publid Date: 2019-10-18T00:00:00Z

Links: CVE-2019-18197 - Bugzilla