CVE-2017-5029
HIGH8.8EPSS 1.3%chromium-browser - security update
Published: 7/31/2018Modified: 4/28/2026
Description
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
Affected packages (5)
- Alpine/libxsltfrom 0, < 1.1.29-r1
- Debian/chromium-browserfrom 0, < 57.0.2987.98-1~deb8u1
- Debian/libxsltfrom 0, < 1.1.29-2.1
- Debian/libxsltfrom 0, < 1.1.26-14.1+deb7u3
- RubyGems/nokogirifrom 0, < 1.7.2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
References (10)
- ADVISORYhttps://github.com/advisories/GHSA-pf6m-fxpq-fg8v
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2017-5029
- ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2017-5029
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-5029
- PATCHhttps://github.com/sparklemotion/nokogiri
- WEBhttps://git.gnome.org/browse/libxslt/commit/?id=08ab2774b870de1c7b5a48693df75e8154addae5
- WEBhttps://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/CVE-2017-5029.yml
- WEBhttps://github.com/sparklemotion/nokogiri/issues/1634
- WEBhttps://ubuntu.com/security/CVE-2017-5029
- WEBhttps://ubuntu.com/security/notices/USN-3271-1