libxslt (1.1.35-1+deb12u2) bookworm-security; urgency=high
* Fix information disclosure with improved memory handling of generated-id()
(Closes: #1108074, CVE-2023-40403)
* Fix type confusion in xmlNode.psvi between stylesheet and source nodes
(Closes: #1109123, CVE-2025-7424)
-- Aron Xu <aron@debian.org> Mon, 18 Aug 2025 01:31:08 +0800
libxslt (1.1.35-1+deb12u1) bookworm-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix UAF related to excluded namespaces (CVE-2024-55549) (Closes: #1100565)
* Fix use-after-free of XPath context node (CVE-2025-24855)
(Closes: #1100566)
-- Salvatore Bonaccorso <carnil@debian.org> Sat, 15 Mar 2025 14:53:42 +0100
libxslt (1.1.35-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.1.35.
* Refresh patches.
* Update Homepage and d/watch to point to the new GNOME-based home
* d/*.doc-base: rename the document name, it shouldn't match the binary
package name.
* Install the new gtk-doc documentation.
* Do not install the .cmake file that come with the new version.
-- Mattia Rizzolo <mattia@debian.org> Fri, 15 Jul 2022 15:29:07 +0200
libxslt (1.1.34-4) unstable; urgency=medium
* Team upload.
* Add patch to make the xslt-config script compatible with multi-arch.
Closes: #952768
-- Mattia Rizzolo <mattia@debian.org> Wed, 04 Mar 2020 14:02:32 +0100
libxslt (1.1.34-3) unstable; urgency=medium
* Team upload.
* Add a patch to fix FTBFS when built twice in a row. Closes: #947914
(Add build-dependency on docbook-xsl for this.)
-- Mattia Rizzolo <mattia@debian.org> Sat, 22 Feb 2020 15:28:46 +0100
libxslt (1.1.34-2) unstable; urgency=medium
* Team upload.
* Re-add the xslt-config script for now.
* d/control: Bump Standards-Version to 4.5.0, no changes needed.
* Upload to unstable.
-- Mattia Rizzolo <mattia@debian.org> Fri, 21 Feb 2020 14:24:17 +0100
libxslt (1.1.34-1) experimental; urgency=medium
* Team upload.
* New upstream version 1.1.34.
* Refresh patches
* d/libxslt1.1.symbols: Add new symbols.
* d/control:
+ Bump debhelper compat level to 12.
+ Bump Standards-Version to 4.4.1, no changes needed.
* Stop building and installing the static library.
* Stop installing xslt-config, please use pkg-config.
* Drop Python2 packages. Closes: #936942
* Make use of dh_missing --fail-missing:
+ Leave the docs files where the upstream build system put them, and just
move them into the right package. All the documentation was this way
moved into an extra html/ directory.
+ Installs files in a way that lets dh_missing detect them as installed.
+ d/not-installed: list xslt-config.
-- Mattia Rizzolo <mattia@debian.org> Mon, 25 Nov 2019 19:22:08 +0100
libxslt (1.1.32-2.2) unstable; urgency=medium
* Non-maintainer upload.
* Fix dangling pointer in xsltCopyText (CVE-2019-18197) (Closes: #942646)
-- Salvatore Bonaccorso <carnil@debian.org> Sat, 19 Oct 2019 21:21:23 +0200
libxslt (1.1.32-2.1) unstable; urgency=medium
* Non-maintainer upload.
* Fix security framework bypass (CVE-2019-11068) (Closes: #926895, #933743)
* Fix uninitialized read of xsl:number token (CVE-2019-13117)
(Closes: #931321, #933743)
* Fix uninitialized read with UTF-8 grouping chars (CVE-2019-13118)
(Closes: #931320, #933743)
-- Salvatore Bonaccorso <carnil@debian.org> Sun, 04 Aug 2019 08:14:05 +0200
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog libxslt1.1`.
Generated by dwww version 1.15 on Tue Sep 2 12:33:07 CEST 2025.