CVE-2025-24855

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-24855

Severity

7.8

High

CVSS V3

Description

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.

References

https://images.chainguard.dev/security/CGA-jhx9-p2rx-7277
https://github.com/advisories/GHSA-3cgj-v3m4-cgcq
https://images.chainguard.dev/security/CGA-v52j-478r-mh2x
https://images.chainguard.dev/security/CGA-4r4m-x253-hhr9
https://images.chainguard.dev/security/CGA-xc3j-4wr3-36rf
https://images.chainguard.dev/security/CGA-jcc3-4r8f-8mrr
https://lists.debian.org/debian-lts-announce/2025/03/msg00015.html
https://gitlab.gnome.org/GNOME/libxslt/-/issues/128

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CVE-2025-24855

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company