6 | | libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded. |
| 6 | libxslt through 1.1.33 allows bypass of a protection mechanism because |
| 7 | callers of xsltCheckRead and xsltCheckWrite permit access even upon |
| 8 | receiving a -1 error code. xsltCheckRead can return -1 for a crafted |
| 9 | URL that is not actually invalid and is subsequently loaded. |