CVE-2016-4612

Publication date 22 July 2016

Last updated 24 July 2024

Ubuntu priority

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-1683. Reason: This candidate is a reservation duplicate of CVE-2016-1683. Notes: All CVE users should reference CVE-2016-1683 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Read the notes from the security team

Status

Show unmaintained releases

How can I get the fixes?
What do statuses mean?

Notes

sbeattie

may be https://bugzilla.gnome.org/show_bug.cgi?id=765380 or https://bugzilla.gnome.org/show_bug.cgi?id=765271 and possibly addressed in 1.1.29; similar for CVE-2016-4612. fixes would be: https://git.gnome.org/browse/libxslt/commit/?id=5d0c6565bab5b9b7efceb33b626916d22b4101a7 https://git.gnome.org/browse/libxslt/commit/?id=d8862309f08054218b28e2c8f5fb3cb2f650cac7 given the above, these were fixed in the upstream 1.1.29 release

sbettie

incorporated patches into USN 3271-1

References

MITRE
NVD
Launchpad
Debian

Other references

http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html
http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html
http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html
http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html
https://support.apple.com/HT206899
https://support.apple.com/HT206901
https://support.apple.com/HT206902
https://support.apple.com/HT206903
https://support.apple.com/HT206904
https://support.apple.com/HT206905
https://www.cve.org/CVERecord?id=CVE-2016-4612