CVE-2015-9019

In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs.

References

Affected packages

Debian:11 / libxslt

Package

Name: libxslt
Purl: pkg:deb/debian/libxslt?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.34-4

1.1.34-4+deb11u1

1.1.34-4+deb11u2

1.1.35-1

1.1.35-1.1

1.1.35-1.2

1.1.35-2

1.1.39-0exp1

1.1.43-0exp1

1.1.43-0.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / libxslt

Package

Name: libxslt
Purl: pkg:deb/debian/libxslt?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.35-1

1.1.35-1+deb12u1

1.1.35-1.1

1.1.35-1.2

1.1.35-2

1.1.39-0exp1

1.1.43-0exp1

1.1.43-0.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / libxslt

Package

Name: libxslt
Purl: pkg:deb/debian/libxslt?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.35-1.2

1.1.35-2

1.1.39-0exp1

1.1.43-0exp1

1.1.43-0.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:14 / libxslt

Package

Name: libxslt
Purl: pkg:deb/debian/libxslt?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.35-1.2

1.1.35-2

1.1.39-0exp1

1.1.43-0exp1

1.1.43-0.1

Ecosystem specific

{
    "urgency": "unimportant"
}