Vulnerability Details : CVE-2015-7995
The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2015-7995
Probability of exploitation activity in the next 30 days: 2.32%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 88 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2015-7995
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2015-7995
-
https://puppet.com/security/cve/cve-2015-7995
CVE-2015-7995 - libxslt vulnerability | Puppet
-
http://lists.apple.com/archives/security-announce/2016/Jan/msg00003.html
Apple - Lists.apple.comVendor Advisory
-
https://support.apple.com/HT206168
About the security content of watchOS 2.2 - Apple SupportVendor Advisory
-
http://lists.opensuse.org/opensuse-updates/2016-05/msg00123.html
openSUSE-SU-2016:1439-1: moderate: Security update for libxslt
-
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017
HPSBMU03593 rev.2 - HPE System Management Homepage (SMH), Remote Code Execution, Denial of Service (DoS), Disclosure of Sensitive Information
-
http://www.debian.org/security/2016/dsa-3605
Debian -- Security Information -- DSA-3605-1 libxslt
-
http://lists.apple.com/archives/security-announce/2016/Jan/msg00005.html
Apple - Lists.apple.comVendor Advisory
-
http://www.openwall.com/lists/oss-security/2015/10/27/10
oss-security - CVE request: libxslt xsltStylePreCompute() type confusion DoS
-
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
Oracle Solaris Bulletin - January 2016
-
http://www.openwall.com/lists/oss-security/2015/10/28/4
oss-security - Re: CVE request: libxslt xsltStylePreCompute() type confusion DoS
-
https://bugzilla.redhat.com/show_bug.cgi?id=1257962
1257962 – (CVE-2015-7995) CVE-2015-7995 libxslt: Type confusion may cause DoSExploit
-
http://www.securitytracker.com/id/1038623
Google Android Multiple Flaws Let Remote Users Deny Service, Obtain Potentially Sensitive Information, and Execute Arbitrary Code and Let Local Apps Gain Elevated Privileges - SecurityTracker
-
http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html
Apple - Lists.apple.com
-
https://git.gnome.org/browse/libxslt/commit/?id=7ca19df892ca22d9314e95d59ce2abdeff46b617
Fix for type confusion in preprocessing attributes (7ca19df8) · Commits · GNOME / libxslt · GitLab
-
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.386546
The Slackware Linux Project: Slackware Security Advisories
-
https://support.apple.com/HT205729
About the security content of tvOS 9.1.1 - Apple Support
-
http://www.securityfocus.com/bid/77325
libxslt 'libxslt/preproc.c' Type Confusion Remote Denial of Service Vulnerability
-
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
HPSBMU03612 rev.2 - HPE Insight Control on Windows and Linux, Multiple Remote Vulnerabilities
-
https://support.apple.com/HT205732
About the security content of iOS 9.2.1 - Apple Support
-
http://www.securitytracker.com/id/1034736
Apple OS X Multiple Memory Corruption Flaws Lets Local Users Obtain Root Privileges - SecurityTracker
-
http://lists.apple.com/archives/security-announce/2016/Jan/msg00002.html
Apple - Lists.apple.comVendor Advisory
-
https://support.apple.com/HT205731
About the security content of OS X El Capitan 10.11.3 and Security Update 2016-001 - Apple Support
Products affected by CVE-2015-7995
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
- cpe:2.3:a:xmlsoft:libxslt:*:*:*:*:*:*:*:*