Home

Description

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of service or unexpected behavior.

PUBLISHED Reserved 2025-07-10 | Published 2025-07-10 | Updated 2026-04-27 | Assigner redhat




HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

Access of Resource Using Incompatible Type ('Type Confusion')

Product status

Default status
unaffected

Any version before 1.1.44
affected

Default status
affected

0:2.12.5-8.el10_0 (rpm) before *
unaffected

Default status
affected

0:1.1.39-8.el10_0 (rpm) before *
unaffected

Default status
affected

1.1.45-0.1.hum1 (rpm) before *
unaffected

Default status
unknown

Default status
unaffected

Default status
unaffected

Default status
unaffected

Default status
unaffected

Timeline

2025-07-10:Reported to Red Hat.
2025-07-10:Made public.

Credits

Red Hat would like to thank Ivan Fratric (Google Project Zero) for reporting this issue.

References

lists.debian.org/debian-lts-announce/2025/09/msg00024.html

seclists.org/fulldisclosure/2025/Aug/0

seclists.org/fulldisclosure/2025/Jul/37

seclists.org/fulldisclosure/2025/Jul/35

seclists.org/fulldisclosure/2025/Jul/33

seclists.org/fulldisclosure/2025/Jul/32

seclists.org/fulldisclosure/2025/Jul/30

www.openwall.com/lists/oss-security/2025/07/11/2

access.redhat.com/errata/RHBA-2025:12345 (RHBA-2025:12345) vendor-advisory

access.redhat.com/errata/RHSA-2026:11015 (RHSA-2026:11015) vendor-advisory

access.redhat.com/security/cve/CVE-2025-7424 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2379228 (RHBZ#2379228) issue-tracking

gitlab.gnome.org/GNOME/libxslt/-/issues/139

cve.org (CVE-2025-7424)

nvd.nist.gov (CVE-2025-7424)

Download JSON