First published: Wed Apr 10 2019(Updated: )
Last updated 24 July 2024
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Xmlsoft Libxslt | <=1.1.33 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =16.04 | |
Canonical Ubuntu Linux | =18.04 | |
Canonical Ubuntu Linux | =18.10 | |
Debian Debian Linux | =8.0 | |
Fedoraproject Fedora | =29 | |
Fedoraproject Fedora | =30 | |
Oracle JDK | =8.0-update_221 | |
Netapp Active Iq Unified Manager Vmware Vsphere | ||
Netapp Active Iq Unified Manager Windows | ||
Netapp Cloud Backup | ||
Netapp E-series Santricity Management Plug-ins Vmware Vcenter | ||
NetApp E-Series SANtricity OS Controller | >=11.0<=11.70.2 | |
Netapp E-series Santricity Storage Manager | ||
Netapp E-series Santricity Unified Manager | ||
Netapp E-series Santricity Web Services Proxy | ||
Netapp Element Software | ||
Netapp Hci Management Node | ||
NetApp OnCommand Insight | ||
NetApp OnCommand Workflow Automation | ||
Netapp Plug-in For Symantec Netbackup | ||
Netapp Santricity Unified Manager | ||
Netapp Snapmanager Sap | ||
Netapp Snapmanager Oracle | ||
Netapp Solidfire | ||
Netapp Steelstore Cloud Integrated Storage | ||
openSUSE Leap | =15.0 | |
openSUSE Leap | =15.1 | |
openSUSE Leap | =42.3 | |
debian/libxslt | 1.1.34-4+deb11u1 1.1.35-1 1.1.35-1.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-11068 is a vulnerability in libxslt through version 1.1.33 that allows bypass of a protection mechanism.
CVE-2019-11068 has a severity rating of 9.8 (critical).
CVE-2019-11068 affects libxslt versions 1.1.32-2.2~deb10u1, 1.1.32-2.2~deb10u2, 1.1.34-4+deb11u1, and 1.1.35-1.
On Debian, the remedy for CVE-2019-11068 is to update libxslt to version 1.1.34-4+deb11u1 or later. On Ubuntu, the remedy depends on the specific version you are using, refer to the relevant security notice for detailed instructions.
You can find more information about CVE-2019-11068 in the CVE entry and the relevant Ubuntu security notices.