Your submission was sent successfully! Close

CVE-2016-4738

Published: 25 September 2016

libxslt in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.

Priority

Medium

CVSS 3 base score: 8.8

Status

Package Release Status
libxslt
Launchpad, Ubuntu, Debian
precise
Released (1.1.26-8ubuntu1.4)
trusty
Released (1.1.28-2ubuntu0.1)
upstream
Released (1.1.29-2)
xenial
Released (1.1.28-2.1ubuntu0.1)
yakkety
Released (1.1.29-1ubuntu0.1)
zesty Not vulnerable
(1.1.29-2)