CVE-2017-5029 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Critical
Remote	Yes
Type	Arbitrary code execution
Description	An integer overflow issue has been found in libxslt, leading to an out of bounds write on 64-bit systems.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-197	chromium	56.0.2924.87-1	57.0.2987.98-1	Critical	Fixed
AVG-196	lib32-libxslt	1.1.29-1	1.1.29+42+gac341cbd-1	Critical	Fixed	FS#53270
AVG-195	libxslt	1.1.29+23+geb1030d-1	1.1.29+41+gdf5330d1-1	Critical	Fixed	FS#53257

Date	Advisory	Group	Package	Severity	Type
12 Mar 2017	ASA-201703-5	AVG-195	libxslt	Critical	arbitrary code execution
11 Mar 2017	ASA-201703-4	AVG-197	chromium	Critical	multiple issues

References
https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html https://git.gnome.org/browse/libxslt/commit/?id=08ab2774b870de1c7b5a48693df75e8154addae5 https://crbug.com/676623