CVE-2019-13117

In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This could allow an attacker to discern whether a byte on the stack contains the characters A, a, I, i, or 0, or any other character.
Configurations

Configuration 1

cpe:2.3:a:xmlsoft:libxslt:1.1.33:*:*:*:*:*:*:*

Information

Published : 2019-07-01 02:15

Updated : 2021-06-29 03:15


NVD link : CVE-2019-13117

Mitre link : CVE-2019-13117

Products Affected
CWE