Changes between Initial Version and Version 2 of Ticket #12209


Ignore:
Timestamp:
06/30/2019 12:00:59 AM (5 years ago)
Author:
Bruce Dubbs
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #12209

    • Property Milestone 8.59.0

  • Ticket #12209 – Description

    initial v2  
    44
    55{{{
    6 libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.
     6libxslt through 1.1.33 allows bypass of a protection mechanism because
     7callers of xsltCheckRead and xsltCheckWrite permit access even upon
     8receiving a -1 error code. xsltCheckRead can return -1 for a crafted
     9URL that is not actually invalid and is subsequently loaded.
    710}}}
    811